Discussion:
[TrouSerS-users] TPM microconf at Linux Plumbers Conference?
Matthew Garrett
2016-06-06 18:57:13 UTC
Permalink
Hi,

I'm looking into running a TPM microconference at the Linux Plubmers
Conference in Santa Fe the first week of November. Right now we have a
bunch of individual pieces of TPM-related technology, but little overall
coherence - almost nobody ships working TPM-enabled bootloaders, we have
no known-good PCR values available, distributions are unclear on what
the appropriate TPM 2.0 userlands to ship are, we don't even have a spec
for how PCRs should be used under Linux.

If this seems like it'd be useful, please add your name to
http://wiki.linuxplumbersconf.org/2016:tpms along with any additional
topics you'd like to discuss - and if you'd like to lead a short
discussion session, drop me an email with a description.

Thanks!
--
Matthew Garrett | ***@srcf.ucam.org
Matthew Garrett
2016-06-06 20:11:48 UTC
Permalink
Thanks for the proposal and pursuing this effort.
Not sure whether I can join, sine I should be back in Germany by that time.
Is a valid plumbers registration necessary?
Yes, you'd need to be registered - there's usually some number available
for people leading discussion topics at microconferences, but I don't
know for sure that that'd be possible.
--
Matthew Garrett | ***@srcf.ucam.org
James Bottomley
2016-09-09 16:48:23 UTC
Permalink
Post by Matthew Garrett
Thanks for the proposal and pursuing this effort.
Not sure whether I can join, sine I should be back in Germany by
that time. Is a valid plumbers registration necessary?
Yes, you'd need to be registered - there's usually some number
available for people leading discussion topics at microconferences,
but I don't know for sure that that'd be possible.
FWIW, I will be attending plumbers as well, if there is no
conflict with the RDMA track I will try to attend the TPM sessions.
RDMA is a KS workshop, so it will be on Tuesday. The Plumbers schedule
isn't out yet, but the plan is for Tuesday to be KS only, so the TPM MC
should be on Wed-Fri.

James


------------------------------------------------------------------------------
Matthew Garrett
2016-06-07 00:38:39 UTC
Permalink
Did you consider submitting this as an Linux Security Summit (LSS)
discussion topic?
Yes, I've submitted something for that, but it would probably also be
helpful to have discussion in a space with more general distribution
developers.
--
Matthew Garrett | ***@srcf.ucam.org
Matthew Garrett
2016-06-07 01:20:16 UTC
Permalink
Post by Matthew Garrett
Did you consider submitting this as an Linux Security Summit (LSS)
discussion topic?
Yes, I've submitted something for that, but it would probably also be
helpful to have discussion in a space with more general distribution
developers.
There are two types of LSS talks - refereed or a discussion topic. I'm
suggesting submitting the latter. I'm not sure what you mean by more
general distribution developers. Most of the distros have someone
attending LSS.
People involved in bootloader work, desktop integration and so on.
--
Matthew Garrett | ***@srcf.ucam.org
Jarkko Sakkinen
2016-08-09 07:10:30 UTC
Permalink
Post by Matthew Garrett
Hi,
I'm looking into running a TPM microconference at the Linux Plubmers
Conference in Santa Fe the first week of November. Right now we have a
bunch of individual pieces of TPM-related technology, but little overall
coherence - almost nobody ships working TPM-enabled bootloaders, we have
no known-good PCR values available, distributions are unclear on what
the appropriate TPM 2.0 userlands to ship are, we don't even have a spec
for how PCRs should be used under Linux.
If this seems like it'd be useful, please add your name to
http://wiki.linuxplumbersconf.org/2016:tpms along with any additional
topics you'd like to discuss - and if you'd like to lead a short
discussion session, drop me an email with a description.
I'd be interested to join. If I get budget for this from my employer,
I'll be definitely here.
I can now confirm to be present here.

/Jarkko
Jarkko Sakkinen
2016-08-12 09:14:34 UTC
Permalink
Post by Jarkko Sakkinen
Post by Matthew Garrett
Hi,
I'm looking into running a TPM microconference at the Linux Plubmers
Conference in Santa Fe the first week of November. Right now we have a
bunch of individual pieces of TPM-related technology, but little overall
coherence - almost nobody ships working TPM-enabled bootloaders, we have
no known-good PCR values available, distributions are unclear on what
the appropriate TPM 2.0 userlands to ship are, we don't even have a spec
for how PCRs should be used under Linux.
If this seems like it'd be useful, please add your name to
http://wiki.linuxplumbersconf.org/2016:tpms along with any additional
topics you'd like to discuss - and if you'd like to lead a short
discussion session, drop me an email with a description.
I'd be interested to join. If I get budget for this from my employer,
I'll be definitely here.
I can now confirm to be present here.
PS. One related topic worth of discussing would be event log handover
from boot loader to the OS. We need to find some defacto approach for
it shared by different boot loaders as TCG hasn't standardized anything
similar to TCPA for TPM2.

/Jarkko
Mimi Zohar
2016-08-12 12:25:21 UTC
Permalink
Hi Jarkko,
Post by Jarkko Sakkinen
PS. One related topic worth of discussing would be event log handover
from boot loader to the OS. We need to find some defacto approach for
it shared by different boot loaders as TCG hasn't standardized anything
similar to TCPA for TPM2.
Is there a reference for "TCPA"?

Thanks!

Mimi
James Bottomley
2016-08-12 20:37:06 UTC
Permalink
Post by Mimi Zohar
Hi Jarkko,
Post by Jarkko Sakkinen
PS. One related topic worth of discussing would be event log
handover from boot loader to the OS. We need to find some defacto
approach for it shared by different boot loaders as TCG hasn't
standardized anything similar to TCPA for TPM2.
Is there a reference for "TCPA"?
TCPA just means Trusted Computing Platform Alliance. I'm not sure if
this is what you're looking for but it's the TCPA architecture spec:

http://www.trustedcomputinggroup.org/tcpa-main-specification-version-1-1b/

James
Jarkko Sakkinen
2016-08-15 21:20:20 UTC
Permalink
Post by James Bottomley
Post by Mimi Zohar
Hi Jarkko,
Post by Jarkko Sakkinen
PS. One related topic worth of discussing would be event log
handover from boot loader to the OS. We need to find some defacto
approach for it shared by different boot loaders as TCG hasn't
standardized anything similar to TCPA for TPM2.
Is there a reference for "TCPA"?
TCPA just means Trusted Computing Platform Alliance. I'm not sure if
http://www.trustedcomputinggroup.org/tcpa-main-specification-version-1-1b/
I stated things bit incorrectly in my original response.

The ACPI table called TCPA is a kind of counter part for TPM2 ACPI table
with TPM 1.x chips. The key problem with TPM2 table is that it does not
have a memory reference for the event log.

The problem to discuss is how could boot loaders handover such data to the
OS.
Post by James Bottomley
James
/Jarkko
Jarkko Sakkinen
2016-08-15 21:03:22 UTC
Permalink
Post by Mimi Zohar
Hi Jarkko,
Post by Jarkko Sakkinen
PS. One related topic worth of discussing would be event log handover
from boot loader to the OS. We need to find some defacto approach for
it shared by different boot loaders as TCG hasn't standardized anything
similar to TCPA for TPM2.
Is there a reference for "TCPA"?
Thanks!
Refer to http://www.trustedcomputinggroup.org/tcg-acpi-specification/
Post by Mimi Zohar
Mimi
/Jarkko
James Bottomley
2016-08-31 18:05:10 UTC
Permalink
Post by Matthew Garrett
Hi,
I'm looking into running a TPM microconference at the Linux
Plubmers
Conference in Santa Fe the first week of November. Right now we have a
bunch of individual pieces of TPM-related technology, but little overall
coherence - almost nobody ships working TPM-enabled bootloaders, we have
no known-good PCR values available, distributions are unclear on what
the appropriate TPM 2.0 userlands to ship are, we don't even have a spec
for how PCRs should be used under Linux.
If this seems like it'd be useful, please add your name to
http://wiki.linuxplumbersconf.org/2016:tpms along with any
additional
topics you'd like to discuss - and if you'd like to lead a short
discussion session, drop me an email with a description.
One topic I would like to suggest for the discussion is
"Standardization of Device Tree Bindings for TPM".
This has been accepted by Plumbers now, so the way you submit topics
for discussion is via the website:

https://www.linuxplumbersconf.org/2016/ocw/events/LPC2016/proposals

James
Currently, TCG Specs also do not have information on Device Tree
based mechanisms either for TPM 1.2 or TPM 2.0.
Post by Matthew Garrett
Thanks!
Thanks & Regards,
- Nayna
---------------------------------------------------------------------
---------
_______________________________________________
tpmdd-devel mailing list
https://lists.sourceforge.net/lists/listinfo/tpmdd-devel
------------------------------------------------------------------------------
Loading...