Editing
Security
(section)
Jump to navigation
Jump to search
Warning:
You are not logged in. Your IP address will be publicly visible if you make any edits. If you
log in
or
create an account
, your edits will be attributed to your username, along with other benefits.
Anti-spam check. Do
not
fill this in!
==Documents== :- [https://146a55aca6f00848c565-a7635525d40ac1c70300198708936b4e.ssl.cf1.rackcdn.com/files/e1db398bce18523d1cbecd13cc60688c942a5d5c.pdf Charter] :- [https://docs.google.com/spreadsheets/d/1o5Vx8QFfHX_AO9pNw5wEjVNeCQ516P55ef71dhz4f6M/edit#gid=0 Meeting Agenda] Works in Progress ::- [https://docs.google.com/document/d/1NaWTRfXgNTiRzp8EnsYKjudo3z2lrdDK0dPyqer0DgU/edit# Glossary] ::- [https://docs.google.com/document/d/13I-meE6BxiLB_c-Mjr3cLLK9S0SjuPuRjPfS9yTG6P8/edit Common Security Threats] ::- [https://docs.google.com/document/d/1Tea1Nfg9T5R7O-pVtorGhQ0UHQzCdMBMckT2hJfBKB8/edit Secure Update and Recovery DEPRECATED] ::- [https://docs.google.com/document/d/1I1eNJvB9oFjnD8oiEBRK5SGFGhKW8AqxrLOqBSzSYoQ/edit Attestation Scope] :::- [https://docs.google.com/document/d/1fzBnA6N9vGYj--Mxit9Whp0TPPyGqgOyBlHdgCN9F_Q/edit Attestation of Systems and System Components] :::- [https://docs.google.com/document/d/1DQGXpOEliExRPil4ozr8A50nibJpGAvAH1PW0uZRZrA/edit Attestation: Use Cases] ::- [https://docs.google.com/document/d/1Se1Dd-raIZhl_xV3MnECeuu_I0nF-keg4kqXyK4k4Wc/edit Secure Boot] ::- [https://docs.google.com/document/d/1Ge_w9i5A6YKG-7nlTp--JhZf6By7I9oB3oW_2_i7JbE/edit Recovery] ::- [https://docs.google.com/spreadsheets/d/1Tu42ZawQoaWqgqC5lY-PNdw48QsILyjI/edit#gid=1174137179 Security Checklist and Badges] ::- [https://docs.google.com/document/d/18dyizlg0betQTlad3nFY4jpXaG09QasQPVwCM572StY/edit?usp=sharing Management Interface Requirements] ::- [https://docs.google.com/document/d/1-bfAF86cEKcn1guF-Qj2C2HhMM2oJ2njNGdHxZeetR0/edit# Secure Platform Overview] ::- [https://docs.google.com/document/d/1oANhjvv_R7E5n8w1RroN8l8-0jdYlfdQDp_3RqGV66k/edit# Ownership Transfer] ::- [https://docs.google.com/document/d/17QAXfpEDlIvSbw0pFJ9wKeIBeBwIFkP4Z8SjhxyECAw/edit# Work Backlog & Prioritization] OCP blogs and announcements ::- [https://www.opencompute.org/blog/ocp-security-announces-version-10-specs-for-root-of-trust Fall 2020 OCP Tech Week Blog Post] ::- [https://www.prnewswire.com/news-releases/ocp-announces-v1-0-of-security-requirements-documents-improving-security-and-trust-for-future-ocp-servers-with-hardware-root-of-trust-301169974.html Fall 2020 PR Newswire Announcement] Reference :- [https://drive.google.com/open?id=13LwglwJ3n9KA8Q5IzBNGjDwYN-TVAeYs Certificate Templates for DICE Attestation] (Intel) Presented 2019-04-30 :- [http://files.opencompute.org/oc/public.php?service=files&t=a436c2418eabd27679f770fbd8621d40&download SPIRAL Protocol Family] (Intel) Presented 2019-01-29 :- [http://files.opencompute.org/oc/public.php?service=files&t=ca33b44f612f8c09db827b610c4d1c54 SPIRAL Protocol Family] (Intel) Presented 2019-03-05 :- [https://drive.google.com/file/d/1q8sSnFtbRuSmYxyKHOLMNBJqLNekBsDL/view?usp=sharing Trusted Platform Module 2.0 Policy Authorization] (IBM) Presented 2020-08-18 by Ken Goldman :- [https://github.com/opencomputeproject/Security/blob/master/SecureFirmwareDevelopmentBestPractices.md CSIS Firmware Development Best Practices] :- [https://drive.google.com/file/d/1fC5c8dMvS95OzWMClDrIXe7FjYMHeqZF/view?usp=sharing Google Position on Attested Boot Logs] Presented 2021-02-23 by Jeff Andersen :- [https://drive.google.com/file/d/1098TOVfY8dnFyZHlWH_PUcueBs3f8jbI/view?usp=sharing Delivering Platform Integrity Without Universal Secure Boot] Presented 2021-03-23 by Jeff Andersen :- [https://drive.google.com/file/d/1t4DZztlFjQwQ2qBc6x6XTox3lvAIFlQN/view?usp=sharing Recovery Spec Overview] Presented 2021-03-30 by Bryan Kelly :- [https://drive.google.com/file/d/1FIIGfvdCC3uIrn_2FsWQu4EHdxzL9K-Q/view?usp=sharing Ownership Transfer and State Management] Presented 2022-03-08 by Jeff Andersen :- [https://drive.google.com/file/d/1UETpYWAtUORr-IT-qblvCWfjWDeuaaoJ/view?usp=sharing OCP Crypto Discussion] Presented 2022-08-08 by Huijun Xie :- [https://drive.google.com/file/d/1hVj0qxCsZGg3ZXR70asCPRKz8eBRDC13/view?usp=sharing System Ownership and Firmware with Multiple Signing Domains] Presented 2022-08-23 by Daniil Egranov :- [https://drive.google.com/file/d/1iPwIzVb1lqpebZokxwSEI6YfXAg9hdFL/view?usp=sharing OCP Recovery Overview] Presented by Eric Spada :- [https://drive.google.com/file/d/1URO4X6ZEIcbbisHZThuw8AFfWsXmGN0d/view?usp=sharing TCG DICE and DMTF SPDM Binding] Presented 2022-08-30 by Chandra Nelogal and Brett Henning :- [https://drive.google.com/file/d/1lSeeYijn4K5Cnd4AaIIw-yP8C7tmgell/view?usp=sharing Intro to Hash-based Signatures] Presented 2022-09-13 by Jeff Andersen :- [https://drive.google.com/file/d/1yxlqAiNWvnX22aY-LX1L2kJBOnLRTC90/view?usp=sharing Attestation + TPM flows] Presented 2022-09-27 by Jeff Andersen :- [https://drive.google.com/file/d/1zxtgMlBrxhXieO9phLgriuAUJl-Duchj/view?usp=sharing Port Remediation] Presented 2022-10-11 by Thomas Koh :- [https://drive.google.com/file/d/1GZTy8rEcpJhXZlkL8TZrUis2x3-wIWhs/view?usp=share_link Media Sanitization] Presented 2022-12-06 by Jonmichael Hands and Arie van der Hoeven :- [https://drive.google.com/file/d/1t5WSUZKzYUBYWses22I-yc-vDDIvAUQb/view?usp=sharing Port Remediation Update] Presented 2022-12-13 by Thomas Koh and Colin Mitchell :- [https://docs.google.com/presentation/d/1Z0A3y-VskBf0Kp71zQOK6B2BipoQUNx8AoR6NGpDeIQ/edit?usp=sharing OCP "Streaming" Boot] Presented 2023-01-10 by Varun Sampath and Bharat Pillilli :- [https://drive.google.com/file/d/1mcn86zaEyk5kir-bb1R0MUm6XNG1oBaR/view?usp=share_link Attested Reset] Presented 2023-01-17 by Jeff Andersen :- [https://drive.google.com/file/d/1KIo0mwYQ9KmH13oqef4Oc2-emDH6WsJS/view?usp=share_link SBOMs] Presented 2023-02-14 by Bryan Kelly
Summary:
Please note that all contributions to OpenCompute may be edited, altered, or removed by other contributors. If you do not want your writing to be edited mercilessly, then do not submit it here.
You are also promising us that you wrote this yourself, or copied it from a public domain or similar free resource (see
OpenCompute:Copyrights
for details).
Do not submit copyrighted work without permission!
Cancel
Editing help
(opens in new window)
Navigation menu
Personal tools
Not logged in
Talk
Contributions
Create account
Log in
Namespaces
Page
Discussion
English
Views
Read
Edit
View history
More
Search
Navigation
Main page
Recent changes
Random page
Help about MediaWiki
Tools
What links here
Related changes
Special pages
Page information