I'm pretty new to SGX, still reading through the docs and just tested/compiled some initial examples. Our particular application involves a smartcard connected to an SGX-capable computer. The SGX enclave is supposed to offer additional services (such as network access or certified time) to the smartcard, but the smartcard needs to be sure that the enclave runs authorized software and is not modifying the network traffic in any way (since we can't run a TLS client directly on the card itself).
So I was wondering if the remote attestation process could be run inside the smartcard, without resorting to the IAS. Can the quote issued by the Quotation Enclave be verified somehow offline (on the card in our case) without the IAS or is the IAS absolutely required at this time?