How to Build a Confidential Attestation Client
Offered By: Linux Plumbers Conference via YouTube
Course Description
Overview
Explore the intricacies of building a secure and effective confidential attestation client in this 17-minute conference talk from the Linux Plumbers Conference. Delve into the subtle factors that can compromise security and usability when implementing a client within a confidential guest. Examine potential issues across various confidential projects and learn strategies for their resolution. Discover provocative examples and innovative proposals, including an introduction to evidence factory attacks and their severe implications for entire services or deployments. Gain insights on designing attestation clients that support privilege separation within a single guest, best practices for populating guest data in attestation reports, and providing additional information to relying parties. Address challenges in orchestration, particularly focusing on connectivity solutions for attestation clients in minimal environments. Engage in a group discussion on open questions surrounding the development of secure, performant, generic, and user-friendly attestation systems, emphasizing the critical role of thoughtful guest implementation in standardized attestation flows.
Syllabus
How to Build a Confidential Attestation Client - Tobin Feldman-Fitzthum
Taught by
Linux Plumbers Conference
Related Courses
Confidential Computing in Cloud and EdgeRSA Conference via YouTube The Rise of Confidential Computing
RSA Conference via YouTube Enabling Rack-Scale Confidential Computing Using Heterogeneous Trusted Execution Environment
IEEE via YouTube Architectural Extensions for Hardware Virtual Machine Isolation to Advance Confidential Computing in Public Clouds
Linux Foundation via YouTube The Open Enclave SDK - Confidential Computing with Trusted Apps
Linux Foundation via YouTube