From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from lists.ozlabs.org (lists.ozlabs.org [112.213.38.117]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.lore.kernel.org (Postfix) with ESMTPS id 1791CC6FA83 for ; Mon, 12 Sep 2022 12:51:03 +0000 (UTC) Received: from boromir.ozlabs.org (localhost [IPv6:::1]) by lists.ozlabs.org (Postfix) with ESMTP id 4MR60P58gcz3bgR for ; Mon, 12 Sep 2022 22:51:01 +1000 (AEST) Authentication-Results: lists.ozlabs.org; spf=pass (sender SPF authorized) smtp.mailfrom=sandelman.ca (client-ip=176.58.120.209; helo=relay.sandelman.ca; envelope-from=mcr+ietf@sandelman.ca; receiver=) X-Greylist: delayed 86164 seconds by postgrey-1.36 at boromir; Wed, 07 Sep 2022 18:01:40 AEST Received: from relay.sandelman.ca (relay.cooperix.net [176.58.120.209]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by lists.ozlabs.org (Postfix) with ESMTPS id 4MMvpr41jzz2yn3 for ; Wed, 7 Sep 2022 18:01:38 +1000 (AEST) Received: from dooku.sandelman.ca (unknown [46.183.103.17]) by relay.sandelman.ca (Postfix) with ESMTPS id 7FA0E1F47B; Wed, 7 Sep 2022 08:01:30 +0000 (UTC) Received: by dooku.sandelman.ca (Postfix, from userid 179) id C70451A0245; Wed, 7 Sep 2022 04:01:30 -0400 (EDT) Received: from dooku (localhost [127.0.0.1]) by dooku.sandelman.ca (Postfix) with ESMTP id C54891A013F; Wed, 7 Sep 2022 04:01:30 -0400 (EDT) From: Michael Richardson To: Patrick Williams Subject: Re: Security Working Group meeting - Wednesday August 31 - results In-reply-to: References: <5723faf6-66c3-1793-699d-ffbf61bf3268@linux.ibm.com> Comments: In-reply-to Patrick Williams message dated "Tue, 06 Sep 2022 08:07:01 -0500." X-Mailer: MH-E 8.6+git; nmh 1.7+dev; GNU Emacs 27.1 MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha512; protocol="application/pgp-signature" Date: Wed, 07 Sep 2022 04:01:30 -0400 Message-ID: <37459.1662537690@dooku> X-Mailman-Approved-At: Mon, 12 Sep 2022 22:41:54 +1000 X-BeenThere: openbmc@lists.ozlabs.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Development list for OpenBMC List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: openbmc , Joseph Reynolds Errors-To: openbmc-bounces+openbmc=archiver.kernel.org@lists.ozlabs.org Sender: "openbmc" --=-=-= Content-Type: text/plain Patrick Williams wrote: > I could be wrong on Keylime. My initial reaction is that it is going > to be difficult to get a broad install base on the Verifier side. Presumably customer that want to have measured boot for their BMC have the incentive to install such a system. I know that IBM has sufficiently people involved with TCG that they ought to already have product that can do this, but I don't know the product names. -- Michael Richardson , Sandelman Software Works -= IPv6 IoT consulting =- --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQEzBAEBCgAdFiEERK+9HEcJHTJ9UqTMlUzhVv38QpAFAmMYT9oACgkQlUzhVv38 QpDutwf+JqPVX2LzXFNNkDN7O/15Dfdy2Z31BfcWm1PHKNZPdSBWTyy+ubHcXCnY 155LZ/MPU/TTkG8NDUhty8ybXZCrhrT996eNyHhppmQNqvpvrHWFJ9VzOa5K9pn4 r4CvJpIustafnFNm/+T7j5V+WwlwJJ6EhV50zmGjZMxhCjj5yRQ5lQjI4BLI0/2+ sJbxyU87oFtw7DnPP2xfdFL67yQoztPOG56zGFnt3klNaS8eEWOVJdVvfioU2QpL ryWcB/rHeA6E00DFDCYD0fgI/z35dFaJdJbr3kuGmu5f+hFtDwWvoUUJkYbO0WNY YccVdTwOiTGJrWcru5wJjbZEnBxssw== =bZdR -----END PGP SIGNATURE----- --=-=-=--