Trusted Cloud

Registered by Ahmed Kamal on 2011-04-18

Ensure full trust worthiness of remote cloud instances before logging into and using them

Blueprint information

Status:
Complete
Approver:
Dave Walker
Priority:
High
Drafter:
None
Direction:
Approved
Assignee:
Serge Hallyn
Definition:
Approved
Series goal:
Accepted for precise
Implementation:
Implemented
Milestone target:
milestone icon precise-alpha-2
Started by
Robbie Williamson on 2011-10-18
Completed by
Robbie Williamson on 2012-04-26

Related branches

Sprints

Whiteboard

Status: not yet started

Work Items:
[serge-hallyn] package libtpms in ppa: DONE
[serge-hallyn] package tpm-enabled qemu-kvm in ppa: DONE
[serge-hallyn] re-review evm kernel: DONE
[serge-hallyn] Talk with EVM upstream about a trusted boot demo: POSTPONED

Questions/Comments:
Is the status of this, and work items correct for this cycle? -- Daviey

No. EVM is now upstream. There is room for trusted boot work, especially as a demonstrable, better, and more flexible alternative to the uefi-based 'secure boot'. But this list is not right. Particularly for a useful server solution, I'm thinking it might be better to wait until after LTS. I will be taking some time to meet with the involved people, however, to get a clearer idea of current status. --Serge

Note - I will create a new blueprint for Q. LTS+1 is a great time to try something like this.

(note from Mimi - thanks Mimi):
There is room for trusted boot work, especially as a demonstrable, better, and more flexible alternative to the uefi-based 'secure boot'.

(?)

Work Items

Dependency tree

* Blueprints in grey have been implemented.