Security: Difference between revisions
Jump to navigation
Jump to search
(56 intermediate revisions by 5 users not shown) | |||
Line 35: | Line 35: | ||
::- [https://docs.google.com/document/d/18dyizlg0betQTlad3nFY4jpXaG09QasQPVwCM572StY/edit?usp=sharing Management Interface Requirements] | ::- [https://docs.google.com/document/d/18dyizlg0betQTlad3nFY4jpXaG09QasQPVwCM572StY/edit?usp=sharing Management Interface Requirements] | ||
::- [https://docs.google.com/document/d/1-bfAF86cEKcn1guF-Qj2C2HhMM2oJ2njNGdHxZeetR0/edit# Secure Platform Overview] | |||
::- [https://docs.google.com/document/d/1oANhjvv_R7E5n8w1RroN8l8-0jdYlfdQDp_3RqGV66k/edit# Ownership Transfer] | |||
::- [https://docs.google.com/document/d/17QAXfpEDlIvSbw0pFJ9wKeIBeBwIFkP4Z8SjhxyECAw/edit# Work Backlog & Prioritization] | |||
OCP blogs and announcements | OCP blogs and announcements | ||
Line 60: | Line 66: | ||
:- [https://drive.google.com/file/d/1t4DZztlFjQwQ2qBc6x6XTox3lvAIFlQN/view?usp=sharing Recovery Spec Overview] Presented 2021-03-30 by Bryan Kelly | :- [https://drive.google.com/file/d/1t4DZztlFjQwQ2qBc6x6XTox3lvAIFlQN/view?usp=sharing Recovery Spec Overview] Presented 2021-03-30 by Bryan Kelly | ||
:- [https://drive.google.com/file/d/1FIIGfvdCC3uIrn_2FsWQu4EHdxzL9K-Q/view?usp=sharing Ownership Transfer and State Management] Presented 2022-03-08 by Jeff Andersen | |||
:- [https://drive.google.com/file/d/1UETpYWAtUORr-IT-qblvCWfjWDeuaaoJ/view?usp=sharing OCP Crypto Discussion] Presented 2022-08-08 by Huijun Xie | |||
:- [https://drive.google.com/file/d/1hVj0qxCsZGg3ZXR70asCPRKz8eBRDC13/view?usp=sharing System Ownership and Firmware with Multiple Signing Domains] Presented 2022-08-23 by Daniil Egranov | |||
:- [https://drive.google.com/file/d/1iPwIzVb1lqpebZokxwSEI6YfXAg9hdFL/view?usp=sharing OCP Recovery Overview] Presented by Eric Spada | |||
:- [https://drive.google.com/file/d/1URO4X6ZEIcbbisHZThuw8AFfWsXmGN0d/view?usp=sharing TCG DICE and DMTF SPDM Binding] Presented 2022-08-30 by Chandra Nelogal and Brett Henning | |||
:- [https://drive.google.com/file/d/1lSeeYijn4K5Cnd4AaIIw-yP8C7tmgell/view?usp=sharing Intro to Hash-based Signatures] Presented 2022-09-13 by Jeff Andersen | |||
:- [https://drive.google.com/file/d/1yxlqAiNWvnX22aY-LX1L2kJBOnLRTC90/view?usp=sharing Attestation + TPM flows] Presented 2022-09-27 by Jeff Andersen | |||
:- [https://drive.google.com/file/d/1zxtgMlBrxhXieO9phLgriuAUJl-Duchj/view?usp=sharing Port Remediation] Presented 2022-10-11 by Thomas Koh | |||
:- [https://drive.google.com/file/d/1GZTy8rEcpJhXZlkL8TZrUis2x3-wIWhs/view?usp=share_link Media Sanitization] Presented 2022-12-06 by Jonmichael Hands and Arie van der Hoeven | |||
:- [https://drive.google.com/file/d/1t5WSUZKzYUBYWses22I-yc-vDDIvAUQb/view?usp=sharing Port Remediation Update] Presented 2022-12-13 by Thomas Koh and Colin Mitchell | |||
:- [https://docs.google.com/presentation/d/1Z0A3y-VskBf0Kp71zQOK6B2BipoQUNx8AoR6NGpDeIQ/edit?usp=sharing OCP "Streaming" Boot] Presented 2023-01-10 by Varun Sampath and Bharat Pillilli | |||
:- [https://drive.google.com/file/d/1mcn86zaEyk5kir-bb1R0MUm6XNG1oBaR/view?usp=share_link Attested Reset] Presented 2023-01-17 by Jeff Andersen | |||
:- [https://drive.google.com/file/d/1KIo0mwYQ9KmH13oqef4Oc2-emDH6WsJS/view?usp=share_link SBOMs] Presented 2023-02-14 by Bryan Kelly | |||
==Approved Publications== | ==Approved Publications== | ||
::- [https://www.opencompute.org/documents/common-security-threats-notes-1-pdf Common Security Threats v1.0 White Paper] | |||
::- [https://www.opencompute.org/documents/secure-boot-2-pdf Secure Boot v1.0 White Paper] | |||
::- [https://www.opencompute.org/documents/attestation-v1-0-20201104-pdf Attestation v1.0 White Paper] | |||
::- [http://files.opencompute.org/oc/public.php?service=files&t=f4171bae8c7a32f05b0401378ee08483&download INFO, White Paper, Ownership and Control of Firmware in Open Compute Project Devices, IBM] | ::- [http://files.opencompute.org/oc/public.php?service=files&t=f4171bae8c7a32f05b0401378ee08483&download INFO, White Paper, Ownership and Control of Firmware in Open Compute Project Devices, IBM] | ||
::- [https://www.opencompute.org/documents/ibm-white-paper-best-practices-for-firmware-code-signing INFO, White Paper, Best Practices for Firmware Code Signing, IBM] | |||
==Project Leadership== | ==Project Leadership== | ||
===IC Representative=== | ===IC Representative=== | ||
:- [mailto: | :- [mailto:andres.lagar-cavilla@ocproject.net Andres Lagar-Cavilla] (Google) | ||
===Project Leads=== | ===Project Leads=== | ||
:- [mailto: | :- [mailto:OCP.Security-Lead1@ocproject.net Jeff Andersen] (Google) | ||
:- [mailto:bryan.kelly@ocproject.net Bryan Kelly] (Microsoft) | :- [mailto:bryan.kelly@ocproject.net Bryan Kelly] (Microsoft) | ||
Line 90: | Line 127: | ||
:- [https://www.opencompute.org/projects/security Call Calendar] | :- [https://www.opencompute.org/projects/security Call Calendar] | ||
:- [https://global.gotomeeting.com/join/271200085 Call Link] | :- [https://global.gotomeeting.com/join/271200085 Call Link] | ||
:- [https://docs.google.com/document/d/1VVMUzYESZNuyT1_YJlQSdSKBy-5t1otJIyXTbXuOoX4/edit Meeting Notes] | |||
You can also dial in using your phone. | You can also dial in using your phone. | ||
Line 96: | Line 134: | ||
==Recordings from Past Calls== | ==Recordings from Past Calls== | ||
OCP Security Project Call | |||
:- [https://www.youtube.com/watch?v=NFk09xwzRu8 February 14, 2023] | |||
:- [https://www.youtube.com/watch?v=LuXkt4MEfLk January 31, 2023] | |||
:- [https://www.youtube.com/watch?v=9AooIeS0m9U January 17, 2023] | |||
:- [https://www.youtube.com/watch?v=nwD7bLssH8U January 10, 2023] | |||
:- [https://www.youtube.com/watch?v=dOglaXDWYGs December 13th, 2022] | |||
:- [https://www.youtube.com/watch?v=1wbEDfkgWqc December 6th, 2022] | |||
:- [https://www.youtube.com/watch?v=cxUrEHheTXM November 29th, 2022] | |||
:- November 15th, 2022 - No Recording | |||
:- November 1st, 2022 - No Recording | |||
:- [https://www.youtube.com/watch?v=woUQuPTzcxc October 11th, 2022] | |||
:- [https://www.youtube.com/watch?v=v94hkpQ8104 October 4th, 2022] | |||
:- [https://www.youtube.com/watch?v=g0aS4aWte28 September 27th, 2022] | |||
:- [https://www.youtube.com/watch?v=lZ1PnJml1CY September 13th, 2022] | |||
:- [https://www.youtube.com/watch?v=LzIHVkWcchM September 6th, 2022] | |||
:- [https://www.youtube.com/watch?v=66pYmsaaCJo August 30th, 2022] | |||
:- [https://www.youtube.com/watch?v=NOCDRkVErv4 August 23rd, 2022] | |||
:- [https://www.youtube.com/watch?v=2lqz4cFUCFo August 9th, 2022] | |||
:- [https://www.youtube.com/watch?v=XZ9yARreUt4 August 2nd, 2022] | |||
:- [https://www.youtube.com/watch?v=KG-HU52I7gU July 26th, 2022] | |||
:- [https://www.youtube.com/watch?v=5SejykeQauU July 12th, 2022] | |||
:- [https://www.youtube.com/watch?v=S3YjOWY_Ljc June 28th, 2022] | |||
:- [https://www.youtube.com/watch?v=peyF1slSreQ June 21st, 2022] | |||
:- [https://www.youtube.com/watch?v=G_bChr7cj1o June 14th, 2022] | |||
:- [https://www.youtube.com/watch?v=jlPlElUcx9g June 7th, 2022] | |||
:- Call Cancelled | |||
:- [https://www.youtube.com/watch?v=MR4r5Td7E54 May 17th, 2022] | |||
:- [https://www.youtube.com/watch?v=ygmaTc6n078 May 10th, 2022] | |||
:- [https://www.opencompute.org/events/past-events/ocp-tech-talk-series-security May 3rd, 2022 Security Project Tech Talk] | |||
:- April 26th, 2022 Call Not Recorded | |||
:- [https://www.youtube.com/watch?v=5sgW6qIw4xg April 19th, 2022] | |||
:- [https://www.youtube.com/watch?v=XHvx_ksWNVQ April 12th, 2022] | |||
:- [https://www.youtube.com/watch?v=vdMk1UvyA1g April 5th, 2022] | |||
:- [https://www.youtube.com/watch?v=gKFWcX8jVf8 March 29th, 2022] | |||
:- March 22nd, 2022 Call Not Recorded | |||
:- [https://www.youtube.com/watch?v=s9uei_7gLOM March 15th, 2022] | |||
:- [https://www.youtube.com/watch?v=nq5ZJTE_QPk March 8th, 2022] | |||
:- [https://www.youtube.com/watch?v=D6PLcvsmvOA February 22nd, 2022] | |||
:- [https://www.youtube.com/watch?v=JHGHDR1iS0E February 15th, 2022] | |||
:- [https://www.youtube.com/watch?v=Tlf4lEU36LU February 8th, 2022] | |||
:- [https://www.youtube.com/watch?v=E1Mzy8lSxa8 February 1st, 2022] | |||
:- [https://www.youtube.com/watch?v=675cQUF1trI January 25th, 2022] | |||
:- [https://www.youtube.com/watch?v=v3Ih8EOyxeU January 11th, 2022] | |||
:- [https://www.youtube.com/watch?v=P_dQwTZC0Mo December 14th, 2021] | |||
:- [https://www.youtube.com/watch?v=1HpZ5r9KJmE December 7th, 2021] | |||
:- [https://www.youtube.com/watch?v=ha7I1Ch51qo November 16th, 2021] | |||
:- [https://www.youtube.com/watch?v=gih6sfX-PWE September 28th, 2021] | |||
:- [https://www.youtube.com/watch?v=GTVmvLGoJXI September 21st, 2021] | |||
:- [https://www.youtube.com/watch?v=G8Y5lO-BKwA September 14th, 2021] | |||
:- [https://www.youtube.com/watch?v=effKwMAh_r4 August 10th, 2021] | |||
:- [https://www.youtube.com/watch?v=X1qfSoKnTWs August 3rd, 2021] | |||
:- [https://www.youtube.com/watch?v=xwBoXJWa1i8 July 27th, 2021] | |||
:- [https://www.youtube.com/watch?v=JW2k43i0eWc July 20th, 2021] | |||
:- [https://www.youtube.com/watch?v=Zg0EcFmphrE July 13th, 2021] | |||
:- [https://www.youtube.com/watch?v=WGNjMawjr8M June 29th, 2021] | |||
:- [https://www.youtube.com/watch?v=4H-y4CAXPdU June 22nd, 2021] | |||
:- [https://www.youtube.com/watch?v=4OOVMbm6uAI June 15th, 2021] | |||
:- [https://www.youtube.com/watch?v=8MAhAykZ5cs June 8th, 2021] | |||
:- [https://www.youtube.com/watch?v=Z_QX9Y2s9P4 June 1st, 2021] | |||
:- [https://www.youtube.com/watch?v=LWg4NIOkqOI May 25th, 2021] | |||
:- [https://www.youtube.com/watch?v=wQo6IiK1M1I May 18th, 2021] | |||
:- [https://www.youtube.com/watch?v=Q77IvLzDj2E May 11th, 2021] | |||
:- [https://www.youtube.com/watch?v=M6cid7COeeg April 27th, 2021] | :- [https://www.youtube.com/watch?v=M6cid7COeeg April 27th, 2021] | ||
:- [https://www.youtube.com/watch?v=f2uBU4Dj2Mw April 20th, 2021] | :- [https://www.youtube.com/watch?v=f2uBU4Dj2Mw April 20th, 2021] |
Latest revision as of 22:47, 15 February 2023
Welcome[edit]
- OCP Security Project
- This Project is open to the public and we want to welcome all those who would like to be involved.
Disclaimer: Please do not submit any confidential information to the Project Community. All presentation materials, proposals, meeting minutes and/or supporting documents are published by OCP and are open to the public in accordance to OCP's Bylaws and IP Policy. This can be found on the OCP OCP Policies page. If you have any questions please contact OCP.
Documents[edit]
- - Charter
Works in Progress
- - Glossary
- - Recovery
OCP blogs and announcements
Reference
- - Certificate Templates for DICE Attestation (Intel) Presented 2019-04-30
- - SPIRAL Protocol Family (Intel) Presented 2019-01-29
- - SPIRAL Protocol Family (Intel) Presented 2019-03-05
- - Trusted Platform Module 2.0 Policy Authorization (IBM) Presented 2020-08-18 by Ken Goldman
- - Google Position on Attested Boot Logs Presented 2021-02-23 by Jeff Andersen
- - Delivering Platform Integrity Without Universal Secure Boot Presented 2021-03-23 by Jeff Andersen
- - Recovery Spec Overview Presented 2021-03-30 by Bryan Kelly
- - Ownership Transfer and State Management Presented 2022-03-08 by Jeff Andersen
- - OCP Crypto Discussion Presented 2022-08-08 by Huijun Xie
- - System Ownership and Firmware with Multiple Signing Domains Presented 2022-08-23 by Daniil Egranov
- - OCP Recovery Overview Presented by Eric Spada
- - TCG DICE and DMTF SPDM Binding Presented 2022-08-30 by Chandra Nelogal and Brett Henning
- - Intro to Hash-based Signatures Presented 2022-09-13 by Jeff Andersen
- - Attestation + TPM flows Presented 2022-09-27 by Jeff Andersen
- - Port Remediation Presented 2022-10-11 by Thomas Koh
- - Media Sanitization Presented 2022-12-06 by Jonmichael Hands and Arie van der Hoeven
- - Port Remediation Update Presented 2022-12-13 by Thomas Koh and Colin Mitchell
- - OCP "Streaming" Boot Presented 2023-01-10 by Varun Sampath and Bharat Pillilli
- - Attested Reset Presented 2023-01-17 by Jeff Andersen
- - SBOMs Presented 2023-02-14 by Bryan Kelly
Approved Publications[edit]
Project Leadership[edit]
IC Representative[edit]
- - Andres Lagar-Cavilla (Google)
Project Leads[edit]
- - Jeff Andersen (Google)
- - Bryan Kelly (Microsoft)
Get Involved[edit]
Past Events[edit]
F2F Meeting at Facebook, October 8-9th, 2019
- - Meeting Notes
- - Recording coming soon
Regular Project Calls[edit]
This project meets weekly on Tuesdays at 8:30am PT (please check the call calendar).
You can also dial in using your phone. United States: +1 (312) 757-3117 Access Code: 271-200-085
Recordings from Past Calls[edit]
OCP Security Project Call
- - February 14, 2023
- - January 31, 2023
- - January 17, 2023
- - January 10, 2023
- - December 13th, 2022
- - December 6th, 2022
- - November 29th, 2022
- - November 15th, 2022 - No Recording
- - November 1st, 2022 - No Recording
- - October 11th, 2022
- - October 4th, 2022
- - September 27th, 2022
- - September 13th, 2022
- - September 6th, 2022
- - August 30th, 2022
- - August 23rd, 2022
- - August 9th, 2022
- - August 2nd, 2022
- - July 26th, 2022
- - July 12th, 2022
- - June 28th, 2022
- - June 21st, 2022
- - June 14th, 2022
- - June 7th, 2022
- - Call Cancelled
- - May 17th, 2022
- - May 10th, 2022
- - May 3rd, 2022 Security Project Tech Talk
- - April 26th, 2022 Call Not Recorded
- - April 19th, 2022
- - April 12th, 2022
- - April 5th, 2022
- - March 29th, 2022
- - March 22nd, 2022 Call Not Recorded
- - March 15th, 2022
- - March 8th, 2022
- - February 22nd, 2022
- - February 15th, 2022
- - February 8th, 2022
- - February 1st, 2022
- - January 25th, 2022
- - January 11th, 2022
- - December 14th, 2021
- - December 7th, 2021
- - November 16th, 2021
- - September 28th, 2021
- - September 21st, 2021
- - September 14th, 2021
- - August 10th, 2021
- - August 3rd, 2021
- - July 27th, 2021
- - July 20th, 2021
- - July 13th, 2021
- - June 29th, 2021
- - June 22nd, 2021
- - June 15th, 2021
- - June 8th, 2021
- - June 1st, 2021
- - May 25th, 2021
- - May 18th, 2021
- - May 11th, 2021
- - April 27th, 2021
- - April 20th, 2021
- - April 13th, 2021
- - April 6th, 2021
- - March 30th, 2021
- - March 23rd, 2021
- - March 16th, 2021
- - March 2nd, 2021
- - February 23rd, 2021
- - February 16th, 2021
- - February 9th, 2021
- - February 2nd, 2021
- - January 26th, 2021
- - January 19th, 2021
- - January 12th, 2021
- - December 8th, 2020
- - November 3rd, 2020
- - October 27th, 2020
- - October 20th, 2020
- - October 13th, 2020
- - October 6th, 2020
- - September 22nd, 2020
- - September 15th, 2020
- - September 8th, 2020
- - September 1st, 2020
- - August 25th, 2020
- - August 18th, 2020
- - August 11th, 2020
- - July 28th, 2020
- - July 21st, 2020
- - July 14th, 2020
- - July 7th, 2020
- - June 23rd, 2020
- - June 16th, 2020
- - June 2nd, 2020
- - May 26th, 2020
- - May 19th, 2020
- - May 5th, 2020
- - April 28th, 2020
- - April 21st, 2020
- - April 14th, 2020
- - March 24th, 2020
- - March 10th, 2020
- - February 11th, 2020
- - February 4th, 2020
- - January 7th, 2019
- - December 17th, 2019
- - November 12th, 2019
- - October 15th, 2019
- - September 3rd, 2019
- - August 27th, 2019
- - August 20th, 2019
- - August 13th, 2019
- - July 30th, 2019
- - July 23rd, 2019
- - July 16th, 2019
- - July 9th, 2019
- - June 18th, 2019
- - May 28th, 2019
- - May 14th, 2019
- - May 7th, 2019
- - April 30th, 2019
- - April 23rd, 2019
- - April 16th, 2019
- - Apr 9th, 2019
- - Apr 2nd, 2019
- - Mar 26th, 2019
- - Mar 19th, 2019
- - Mar 5th, 2019
- - Feb 26th, 2019
- - Feb 19th, 2019
- - Feb 12th, 2019
- - Feb 5th, 2019
- - Jan 29th, 2019
- - Jan 22nd, 2019
- - Jan 15th, 2019
- - Jan 8th, 2019
- - Dec 18th, 2018
- - Dec 11th, 2018
- - Dec 4th, 2018
- - Nov 27th, 2018
- - Nov 13th, 2018
- - Nov 6th, 2018
- - Oct 16th, 2018
- - Oct 9th, 2018
- - Sep 25th, 2018
- - Sep 11th, 2018
- - Sep 4th, 2018
- - Aug 21st, 2018
- - Aug 7th, 2018
- - Jul 24th, 2018
- - Jul 17th, 2018
- - Jun 19th, 2018
- - Jun 5th, 2018
- - May 29, 2018
- - May 1st, 2018
- - Apr 24th, 2018
- - Apr 3rd, 2018
- - Mar 27th, 2018
- - Mar 13th, 2018
- - Mar 6th, 2018
- - Feb 27th, 2018
- - Feb 20th, 2018
- - Feb 13th, 2018
- - Feb 6th, 2018
- - Jan 30th, 2018