Explore the latest developments in confidential computing attestation through this insightful conference talk from the Linux Plumbers Conference. Delve into the progress made by the Confidential Containers project in creating the first fully open-source attestation service. Learn about the Attestation Service and Key Broker Service (KBS) projects, which form the foundation of a vendor-agnostic attestation service framework. Discover how the KBS API and protocol support various attestation models without being tied to specific vendor formats. Examine the verification backend's ability to handle major CoCo vendor attestation format evidences through a plugin interface. Gain insights into current challenges, including converging attestation results formats and integrating with the software supply chain. Explore emerging long-term issues, such as combining asynchronous, SoC vendor-independent trusted device attestation with guest attestation. Enhance your understanding of the evolving landscape of confidential computing and its critical components.
Shrinking the Elephant - Confidential Computing Attestation Advancements
Linux Plumbers Conference via YouTube
Overview
Syllabus
Shrinking The Elephant - A Confidential Computing Attestation Sequel - Samuel Ortiz
Taught by
Linux Plumbers Conference
Related Courses
-
CoCo-AS: First Confidential Computing Attestation Solution of CNCF
-
The Elephants in the Confidential Room - Attestation and Verification
-
Device Attestation in Hardware TEE-Based Confidential Computing
-
When Confidential Containers Meet Arm Confidential Computing Architecture
-
Remote Attestation in AMD SEV-SNP Confidential VMs
-
Hiding Attestation with Linux Keyring in Confidential Virtual Machines
