Difference between revisions of "Security"

From OpenCompute
Jump to: navigation, search
(IC Representative)
(Recordings from Past Calls)
(33 intermediate revisions by 4 users not shown)
Line 66: Line 66:
  
 
:- [https://drive.google.com/file/d/1t4DZztlFjQwQ2qBc6x6XTox3lvAIFlQN/view?usp=sharing Recovery Spec Overview] Presented 2021-03-30 by Bryan Kelly
 
:- [https://drive.google.com/file/d/1t4DZztlFjQwQ2qBc6x6XTox3lvAIFlQN/view?usp=sharing Recovery Spec Overview] Presented 2021-03-30 by Bryan Kelly
 +
 +
:- [https://drive.google.com/file/d/1FIIGfvdCC3uIrn_2FsWQu4EHdxzL9K-Q/view?usp=sharing Ownership Transfer and State Management] Presented 2022-03-08 by Jeff Andersen
 +
 +
:- [https://drive.google.com/file/d/1UETpYWAtUORr-IT-qblvCWfjWDeuaaoJ/view?usp=sharing OCP Crypto Discussion] Presented 2022-08-08 by Huijun Xie
 +
 +
:- [https://drive.google.com/file/d/1hVj0qxCsZGg3ZXR70asCPRKz8eBRDC13/view?usp=sharing System Ownership and Firmware with Multiple Signing Domains] Presented 2022-08-23 by Daniil Egranov
 +
 +
:- [https://drive.google.com/file/d/1iPwIzVb1lqpebZokxwSEI6YfXAg9hdFL/view?usp=sharing OCP Recovery Overview] Presented by Eric Spada
 +
 +
:- [https://drive.google.com/file/d/1URO4X6ZEIcbbisHZThuw8AFfWsXmGN0d/view?usp=sharing TCG DICE and DMTF SPDM Binding] Presented 2022-08-30 by Chandra Nelogal and Brett Henning
 +
 +
:- [https://drive.google.com/file/d/1lSeeYijn4K5Cnd4AaIIw-yP8C7tmgell/view?usp=sharing Intro to Hash-based Signatures] Presented 2022-09-13 by Jeff Andersen
 +
 +
:- [https://drive.google.com/file/d/1yxlqAiNWvnX22aY-LX1L2kJBOnLRTC90/view?usp=sharing Attestation + TPM flows] Presented 2022-09-27 by Jeff Andersen
  
 
==Approved Publications==
 
==Approved Publications==
  
 +
::- [https://www.opencompute.org/documents/common-security-threats-notes-1-pdf Common Security Threats v1.0 White Paper]
 +
::- [https://www.opencompute.org/documents/secure-boot-2-pdf Secure Boot v1.0 White Paper]
 +
::- [https://www.opencompute.org/documents/attestation-v1-0-20201104-pdf Attestation v1.0 White Paper]
 
::- [http://files.opencompute.org/oc/public.php?service=files&t=f4171bae8c7a32f05b0401378ee08483&download INFO, White Paper, Ownership and Control of Firmware in Open Compute Project Devices, IBM]
 
::- [http://files.opencompute.org/oc/public.php?service=files&t=f4171bae8c7a32f05b0401378ee08483&download INFO, White Paper, Ownership and Control of Firmware in Open Compute Project Devices, IBM]
 +
::- [https://www.opencompute.org/documents/ibm-white-paper-best-practices-for-firmware-code-signing INFO, White Paper, Best Practices for Firmware Code Signing, IBM]
  
 
==Project Leadership==
 
==Project Leadership==
Line 97: Line 115:
 
:- [https://www.opencompute.org/projects/security Call Calendar]
 
:- [https://www.opencompute.org/projects/security Call Calendar]
 
:- [https://global.gotomeeting.com/join/271200085 Call Link]
 
:- [https://global.gotomeeting.com/join/271200085 Call Link]
 +
:- [https://docs.google.com/document/d/1VVMUzYESZNuyT1_YJlQSdSKBy-5t1otJIyXTbXuOoX4/edit Meeting Notes]
  
 
You can also dial in using your phone.  
 
You can also dial in using your phone.  
Line 103: Line 122:
  
 
==Recordings from Past Calls==
 
==Recordings from Past Calls==
 +
OCP Security Project Call
 +
:- [https://www.youtube.com/watch?v=g0aS4aWte28 September 27th, 2022]
 +
:- [https://www.youtube.com/watch?v=lZ1PnJml1CY September 13th, 2022]
 +
:- [https://www.youtube.com/watch?v=LzIHVkWcchM September 6th, 2022]
 +
:- [https://www.youtube.com/watch?v=66pYmsaaCJo August 30th, 2022]
 +
:- [https://www.youtube.com/watch?v=NOCDRkVErv4 August 23rd, 2022]
 +
:- [https://www.youtube.com/watch?v=2lqz4cFUCFo August 9th, 2022]
 +
:- [https://www.youtube.com/watch?v=XZ9yARreUt4 August 2nd, 2022]
 +
:- [https://www.youtube.com/watch?v=KG-HU52I7gU July 26th, 2022]
 +
:- [https://www.youtube.com/watch?v=5SejykeQauU July 12th, 2022]
 +
:- [https://www.youtube.com/watch?v=S3YjOWY_Ljc June 28th, 2022]
 +
:- [https://www.youtube.com/watch?v=peyF1slSreQ June 21st, 2022]
 +
:- [https://www.youtube.com/watch?v=G_bChr7cj1o June 14th, 2022]
 +
:- [https://www.youtube.com/watch?v=jlPlElUcx9g June 7th, 2022]
 +
:- Call Cancelled
 +
:- [https://www.youtube.com/watch?v=MR4r5Td7E54 May 17th, 2022]
 +
:- [https://www.youtube.com/watch?v=ygmaTc6n078 May 10th, 2022]
 +
:- [https://www.opencompute.org/events/past-events/ocp-tech-talk-series-security May 3rd, 2022 Security Project Tech Talk]
 +
:- April 26th, 2022 Call Not Recorded
 +
:- [https://www.youtube.com/watch?v=5sgW6qIw4xg April 19th, 2022]
 +
:- [https://www.youtube.com/watch?v=XHvx_ksWNVQ April 12th, 2022]
 +
:- [https://www.youtube.com/watch?v=vdMk1UvyA1g April 5th, 2022]
 +
:- [https://www.youtube.com/watch?v=gKFWcX8jVf8 March 29th, 2022]
 +
:- March 22nd, 2022 Call Not Recorded
 +
:- [https://www.youtube.com/watch?v=s9uei_7gLOM March 15th, 2022]
 +
:- [https://www.youtube.com/watch?v=nq5ZJTE_QPk March 8th, 2022]
 +
:- [https://www.youtube.com/watch?v=D6PLcvsmvOA February 22nd, 2022]
 +
:- [https://www.youtube.com/watch?v=JHGHDR1iS0E February 15th, 2022]
 +
:- [https://www.youtube.com/watch?v=Tlf4lEU36LU February 8th, 2022]
 +
:- [https://www.youtube.com/watch?v=E1Mzy8lSxa8 February 1st, 2022]
 +
:- [https://www.youtube.com/watch?v=675cQUF1trI January 25th, 2022]
 +
:- [https://www.youtube.com/watch?v=v3Ih8EOyxeU January 11th, 2022]
 +
:- [https://www.youtube.com/watch?v=P_dQwTZC0Mo December 14th, 2021]
 +
:- [https://www.youtube.com/watch?v=1HpZ5r9KJmE December 7th, 2021]
 +
:- [https://www.youtube.com/watch?v=ha7I1Ch51qo November 16th, 2021]
 +
:- [https://www.youtube.com/watch?v=gih6sfX-PWE September 28th, 2021]
 +
:- [https://www.youtube.com/watch?v=GTVmvLGoJXI September 21st, 2021]
 +
:- [https://www.youtube.com/watch?v=G8Y5lO-BKwA September 14th, 2021]
 
:- [https://www.youtube.com/watch?v=effKwMAh_r4 August 10th, 2021]
 
:- [https://www.youtube.com/watch?v=effKwMAh_r4 August 10th, 2021]
 
:- [https://www.youtube.com/watch?v=X1qfSoKnTWs August 3rd, 2021]
 
:- [https://www.youtube.com/watch?v=X1qfSoKnTWs August 3rd, 2021]

Revision as of 22:24, 27 September 2022

OCP-security-v1-17a3x.png

Welcome

OCP Security Project
This Project is open to the public and we want to welcome all those who would like to be involved.

Disclaimer: Please do not submit any confidential information to the Project Community. All presentation materials, proposals, meeting minutes and/or supporting documents are published by OCP and are open to the public in accordance to OCP's Bylaws and IP Policy. This can be found on the OCP OCP Policies page. If you have any questions please contact OCP.

Documents

- Charter
- Meeting Agenda

Works in Progress

- Glossary
- Common Security Threats
- Secure Update and Recovery DEPRECATED
- Attestation Scope
- Attestation of Systems and System Components
- Attestation: Use Cases
- Secure Boot
- Recovery
- Security Checklist and Badges
- Management Interface Requirements
- Secure Platform Overview
- Ownership Transfer
- Work Backlog & Prioritization

OCP blogs and announcements

- Fall 2020 OCP Tech Week Blog Post
- Fall 2020 PR Newswire Announcement


Reference

- Certificate Templates for DICE Attestation (Intel) Presented 2019-04-30
- SPIRAL Protocol Family (Intel) Presented 2019-01-29
- SPIRAL Protocol Family (Intel) Presented 2019-03-05
- Trusted Platform Module 2.0 Policy Authorization (IBM) Presented 2020-08-18 by Ken Goldman
- CSIS Firmware Development Best Practices
- Google Position on Attested Boot Logs Presented 2021-02-23 by Jeff Andersen
- Delivering Platform Integrity Without Universal Secure Boot Presented 2021-03-23 by Jeff Andersen
- Recovery Spec Overview Presented 2021-03-30 by Bryan Kelly
- Ownership Transfer and State Management Presented 2022-03-08 by Jeff Andersen
- OCP Crypto Discussion Presented 2022-08-08 by Huijun Xie
- System Ownership and Firmware with Multiple Signing Domains Presented 2022-08-23 by Daniil Egranov
- OCP Recovery Overview Presented by Eric Spada
- TCG DICE and DMTF SPDM Binding Presented 2022-08-30 by Chandra Nelogal and Brett Henning
- Intro to Hash-based Signatures Presented 2022-09-13 by Jeff Andersen
- Attestation + TPM flows Presented 2022-09-27 by Jeff Andersen

Approved Publications

- Common Security Threats v1.0 White Paper
- Secure Boot v1.0 White Paper
- Attestation v1.0 White Paper
- INFO, White Paper, Ownership and Control of Firmware in Open Compute Project Devices, IBM
- INFO, White Paper, Best Practices for Firmware Code Signing, IBM

Project Leadership

IC Representative

- Andres Lagar-Cavilla (Google)

Project Leads

- Nate Klein (Google)
- Bryan Kelly (Microsoft)

Get Involved

- Mailing List

Past Events

F2F Meeting at Facebook, October 8-9th, 2019

- Meeting Notes
- Recording coming soon

Regular Project Calls

This project meets weekly on Tuesdays at 8:30am PT (please check the call calendar).

- Call Calendar
- Call Link
- Meeting Notes

You can also dial in using your phone. United States: +1 (312) 757-3117 Access Code: 271-200-085

Recordings from Past Calls

OCP Security Project Call

- September 27th, 2022
- September 13th, 2022
- September 6th, 2022
- August 30th, 2022
- August 23rd, 2022
- August 9th, 2022
- August 2nd, 2022
- July 26th, 2022
- July 12th, 2022
- June 28th, 2022
- June 21st, 2022
- June 14th, 2022
- June 7th, 2022
- Call Cancelled
- May 17th, 2022
- May 10th, 2022
- May 3rd, 2022 Security Project Tech Talk
- April 26th, 2022 Call Not Recorded
- April 19th, 2022
- April 12th, 2022
- April 5th, 2022
- March 29th, 2022
- March 22nd, 2022 Call Not Recorded
- March 15th, 2022
- March 8th, 2022
- February 22nd, 2022
- February 15th, 2022
- February 8th, 2022
- February 1st, 2022
- January 25th, 2022
- January 11th, 2022
- December 14th, 2021
- December 7th, 2021
- November 16th, 2021
- September 28th, 2021
- September 21st, 2021
- September 14th, 2021
- August 10th, 2021
- August 3rd, 2021
- July 27th, 2021
- July 20th, 2021
- July 13th, 2021
- June 29th, 2021
- June 22nd, 2021
- June 15th, 2021
- June 8th, 2021
- June 1st, 2021
- May 25th, 2021
- May 18th, 2021
- May 11th, 2021
- April 27th, 2021
- April 20th, 2021
- April 13th, 2021
- April 6th, 2021
- March 30th, 2021
- March 23rd, 2021
- March 16th, 2021
- March 2nd, 2021
- February 23rd, 2021
- February 16th, 2021
- February 9th, 2021
- February 2nd, 2021
- January 26th, 2021
- January 19th, 2021
- January 12th, 2021
- December 8th, 2020
- November 3rd, 2020
- October 27th, 2020
- October 20th, 2020
- October 13th, 2020
- October 6th, 2020
- September 22nd, 2020
- September 15th, 2020
- September 8th, 2020
- September 1st, 2020
- August 25th, 2020
- August 18th, 2020
- August 11th, 2020
- July 28th, 2020
- July 21st, 2020
- July 14th, 2020
- July 7th, 2020
- June 23rd, 2020
- June 16th, 2020
- June 2nd, 2020
- May 26th, 2020
- May 19th, 2020
- May 5th, 2020
- April 28th, 2020
- April 21st, 2020
- April 14th, 2020
- March 24th, 2020
- March 10th, 2020
- February 11th, 2020
- February 4th, 2020
- January 7th, 2019
- December 17th, 2019
- November 12th, 2019
- October 15th, 2019
- September 3rd, 2019
- August 27th, 2019
- August 20th, 2019
- August 13th, 2019
- July 30th, 2019
- July 23rd, 2019
- July 16th, 2019
- July 9th, 2019
- June 18th, 2019
- May 28th, 2019
- May 14th, 2019
- May 7th, 2019
- April 30th, 2019
- April 23rd, 2019
- April 16th, 2019
- Apr 9th, 2019
- Apr 2nd, 2019
- Mar 26th, 2019
- Mar 19th, 2019
- Mar 5th, 2019
- Feb 26th, 2019
- Feb 19th, 2019
- Feb 12th, 2019
- Feb 5th, 2019
- Jan 29th, 2019
- Jan 22nd, 2019
- Jan 15th, 2019
- Jan 8th, 2019
- Dec 18th, 2018
- Dec 11th, 2018
- Dec 4th, 2018
- Nov 27th, 2018
- Nov 13th, 2018
- Nov 6th, 2018
- Oct 16th, 2018
- Oct 9th, 2018
- Sep 25th, 2018
- Sep 11th, 2018
- Sep 4th, 2018
- Aug 21st, 2018
- Aug 7th, 2018
- Jul 24th, 2018
- Jul 17th, 2018
- Jun 19th, 2018
- Jun 5th, 2018
- May 29, 2018
- May 1st, 2018
- Apr 24th, 2018
- Apr 3rd, 2018
- Mar 27th, 2018
- Mar 13th, 2018
- Mar 6th, 2018
- Feb 27th, 2018
- Feb 20th, 2018
- Feb 13th, 2018
- Feb 6th, 2018
- Jan 30th, 2018