OCP 可组合安全架构第三集：OpenPRoT 简介.pdf

《OCP 可组合安全架构第三集：OpenPRoT 简介.pdf》由会员分享，可在线阅读，更多相关《OCP 可组合安全架构第三集：OpenPRoT 简介.pdf（15页珍藏版）》请在三个皮匠报告上搜索。

1、Lou Ferraro(AMD)Miguel Osorio(Google)OCP Composable Security ArchitectureEpisode 3:Introducing OpenPRoTOCP Composable Security Architecture Episode 3:Introducing OpenPRoTLou Ferraro(AMD)Miguel Osorio(Google)CYBER SECURITY&DATA PROTECTIONOCP established Orchestration as a key element for an“Admissibl

2、e Architecture”Composable Security ArchitectureA Platform Root of Trust(PRoT)is a central element in the machine that backstops activities like recovery and update of the first mutable code needed to boot the platform.Todays Platform Root of Trust solutionsSpecifically designed for their target plat

3、formRely on custom interfaces or protocolsSlower time-to-market due to integration effortPlatform vendors are locked into a solutionChanging suppliers can be costly and time consumingSupply chain risksProblem StatementThe OpenPRoT project was initiated to:Create an OCP specification for a Platform R

4、oot of Trust firmware stackCreate an open-source implementation of the specificationTarget new and existing PRoT hardware implementationsImplementation consistency,transparency,openness,reusability,interoperabilityIntroducing OpenPRoTStandards-based ArchitectureStandardUsageOCP Hardware Secure BootO

5、rchestration of secure boot for platform componentsOCP AttestationAggregation of attestation reports from platform components,local verifierOCP Secure Firmware RecoveryOrchestration of recovery for corrupted firmware of platform componentsOCP Streaming BootFacilitation of“flash-less”FW load from rem

6、ote agent for platform componentsOCP Device Ownership TransferOwnership transfer services for the platformDMTF Management Component Transfer ProtocolTransport layer providing compatibility over any hardware interface that can bind to MCTPDMTF Platform Level Data ModelPLDM Type 2 provides interface f