Trusted Cloud
Ensure full trust worthiness of remote cloud instances before logging into and using them
Blueprint information
- Status:
- Complete
- Approver:
- Dave Walker
- Priority:
- High
- Drafter:
- None
- Direction:
- Approved
- Assignee:
- Serge Hallyn
- Definition:
- Approved
- Series goal:
- Accepted for precise
- Implementation:
-
Implemented
- Milestone target:
-
precise-alpha-2
- Started by
- Robbie Williamson
- Completed by
- Robbie Williamson
Whiteboard
Status: not yet started
Work Items:
[serge-hallyn] package libtpms in ppa: DONE
[serge-hallyn] package tpm-enabled qemu-kvm in ppa: DONE
[serge-hallyn] re-review evm kernel: DONE
[serge-hallyn] Talk with EVM upstream about a trusted boot demo: POSTPONED
Questions/Comments:
Is the status of this, and work items correct for this cycle? -- Daviey
No. EVM is now upstream. There is room for trusted boot work, especially as a demonstrable, better, and more flexible alternative to the uefi-based 'secure boot'. But this list is not right. Particularly for a useful server solution, I'm thinking it might be better to wait until after LTS. I will be taking some time to meet with the involved people, however, to get a clearer idea of current status. --Serge
Note - I will create a new blueprint for Q. LTS+1 is a great time to try something like this.
(note from Mimi - thanks Mimi):
There is room for trusted boot work, especially as a demonstrable, better, and more flexible alternative to the uefi-based 'secure boot'.
Work Items
Dependency tree
* Blueprints in grey have been implemented.
