Speakers
Chris Porter
(IBM Research)
Claudio Carvalho
Daniele Buono
(IBM)
Niteesh Dubey
(IBM)
Tobin Feldman-Fitzthum
(IBM)
Description
Trustee, formerly referred to as KBS, is a set of attestation and key management services for confidential workloads. In the past year the project has grown considerably, now supporting attestation of 8 different confidential platforms. This talk will briefly introduce the project and these updates but the main focus is ongoing work.
The talk will touch on the community's plan to support device attestation and integrate the CoRIM and EAR standards. We will then dive more deeply into how Trustee can be used to provide secure networking services to confidential guests. We will discuss the limitations of existing networking solutions and the need for specialized approaches to address secure node discovery, attestation, and secret provisioning.
Primary authors
Chris Porter
(IBM Research)
Claudio Carvalho
Daniele Buono
(IBM)
Niteesh Dubey
(IBM)
Tobin Feldman-Fitzthum
(IBM)