PCI Device Authentication and Encryption

Explore the latest developments in PCI device authentication and encryption in this Linux Plumbers Conference talk. Delve into the progress made since the 2022 BoF session, where consensus was reached on performing device authentication through the PCI core before driver probing. Examine the refined and extended implementation of in-kernel CMA-SPDM, now submitted as a non-RFC patch set. Discuss the next steps for measurement retrieval, certificate provisioning, and encryption (IDE, PCIe r6.1 sec 6.33). Consider how the in-kernel implementation can integrate with vendor-defined firmware solutions like Intel TDX Connect, AMD SEV-TIO, and ARM CCA. Engage in a face-to-face discussion aimed at PCI, CXL, and virtualization developers interested in enhancing device security.