TPM microconf at Linux Plumbers Conference?

TPM microconf at Linux Plumbers Conference?

[Matthew Garrett]

Hi,

I'm looking into running a TPM microconference at the Linux Plubmers 
Conference in Santa Fe the first week of November. Right now we have a 
bunch of individual pieces of TPM-related technology, but little overall 
coherence - almost nobody ships working TPM-enabled bootloaders, we have 
no known-good PCR values available, distributions are unclear on what 
the appropriate TPM 2.0 userlands to ship are, we don't even have a spec 
for how PCRs should be used under Linux.

If this seems like it'd be useful, please add your name to 
http://wiki.linuxplumbersconf.org/2016:tpms along with any additional 
topics you'd like to discuss - and if you'd like to lead a short 
discussion session, drop me an email with a description.

Thanks!
-- 
Matthew Garrett | mjg59-1xO5oi07KQx4cg9Nei1l7Q@public.gmane.org

------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity 
planning reports. https://ad.doubleclick.net/ddm/clk/305295220;132659582;e

Re: TPM microconf at Linux Plumbers Conference?

[Peter Huewe]

Am 6. Juni 2016 11:57:13 GMT-07:00, schrieb Matthew Garrett <mjg59-1xO5oi07KQx4cg9Nei1l7Q@public.gmane.org>:
>Hi,
>
>I'm looking into running a TPM microconference at the Linux Plubmers 
>Conference in Santa Fe the first week of November. Right now we have a 
>bunch of individual pieces of TPM-related technology, but little
>overall 
>coherence - almost nobody ships working TPM-enabled bootloaders, we
>have 
>no known-good PCR values available, distributions are unclear on what 
>the appropriate TPM 2.0 userlands to ship are, we don't even have a
>spec 
>for how PCRs should be used under Linux.
>
>If this seems like it'd be useful, please add your name to 
>http://wiki.linuxplumbersconf.org/2016:tpms along with any additional 
>topics you'd like to discuss - and if you'd like to lead a short 
>discussion session, drop me an email with a description.
>
>Thanks!

Thanks for the proposal and pursuing this effort.
Not sure whether I can join, sine I should be back in Germany by that time.
Is a valid plumbers registration necessary?
Peter

-- 
Sent from my mobile

------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity 
planning reports. https://ad.doubleclick.net/ddm/clk/305295220;132659582;e

Re: TPM microconf at Linux Plumbers Conference?

[Matthew Garrett]

On Mon, Jun 06, 2016 at 01:10:22PM -0700, Peter Huewe wrote:

> Thanks for the proposal and pursuing this effort.
> Not sure whether I can join, sine I should be back in Germany by that time.
> Is a valid plumbers registration necessary?

Yes, you'd need to be registered - there's usually some number available 
for people leading discussion topics at microconferences, but I don't 
know for sure that that'd be possible.

-- 
Matthew Garrett | mjg59-1xO5oi07KQx4cg9Nei1l7Q@public.gmane.org

------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity 
planning reports. https://ad.doubleclick.net/ddm/clk/305295220;132659582;e

Re: [Linux-ima-devel] TPM microconf at Linux Plumbers Conference?

[Mimi Zohar]

On Mon, 2016-06-06 at 19:57 +0100, Matthew Garrett wrote:
> Hi,
> 
> I'm looking into running a TPM microconference at the Linux Plubmers 
> Conference in Santa Fe the first week of November. Right now we have a 
> bunch of individual pieces of TPM-related technology, but little overall 
> coherence - almost nobody ships working TPM-enabled bootloaders, we have 
> no known-good PCR values available, distributions are unclear on what 
> the appropriate TPM 2.0 userlands to ship are, we don't even have a spec 
> for how PCRs should be used under Linux.
> 
> If this seems like it'd be useful, please add your name to 
> http://wiki.linuxplumbersconf.org/2016:tpms along with any additional 
> topics you'd like to discuss - and if you'd like to lead a short 
> discussion session, drop me an email with a description.
> 
> Thanks!

Did you consider submitting this as an Linux Security Summit (LSS)
discussion topic?

Mimi


------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity 
planning reports. https://ad.doubleclick.net/ddm/clk/305295220;132659582;e

Re: [Linux-ima-devel] TPM microconf at Linux Plumbers Conference?

[Matthew Garrett]

On Mon, Jun 06, 2016 at 08:35:55PM -0400, Mimi Zohar wrote:

> Did you consider submitting this as an Linux Security Summit (LSS)
> discussion topic?

Yes, I've submitted something for that, but it would probably also be 
helpful to have discussion in a space with more general distribution 
developers.

-- 
Matthew Garrett | mjg59-1xO5oi07KQx4cg9Nei1l7Q@public.gmane.org

------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity 
planning reports. https://ad.doubleclick.net/ddm/clk/305295220;132659582;e

Re: [Linux-ima-devel] TPM microconf at Linux Plumbers Conference?

[Mimi Zohar]

On Tue, 2016-06-07 at 01:38 +0100, Matthew Garrett wrote:
> On Mon, Jun 06, 2016 at 08:35:55PM -0400, Mimi Zohar wrote:
> 
> > Did you consider submitting this as an Linux Security Summit (LSS)
> > discussion topic?
> 
> Yes, I've submitted something for that, but it would probably also be 
> helpful to have discussion in a space with more general distribution 
> developers.

There are two types of LSS talks - refereed or a discussion topic.  I'm
suggesting submitting the latter.   I'm not sure what you mean by more
general distribution developers.  Most of the distros have someone
attending LSS.

Mimi



------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity 
planning reports. https://ad.doubleclick.net/ddm/clk/305295220;132659582;e

Re: [Linux-ima-devel] TPM microconf at Linux Plumbers Conference?

[Matthew Garrett]

On Mon, Jun 06, 2016 at 09:18:55PM -0400, Mimi Zohar wrote:
> On Tue, 2016-06-07 at 01:38 +0100, Matthew Garrett wrote:
> > On Mon, Jun 06, 2016 at 08:35:55PM -0400, Mimi Zohar wrote:
> > 
> > > Did you consider submitting this as an Linux Security Summit (LSS)
> > > discussion topic?
> > 
> > Yes, I've submitted something for that, but it would probably also be 
> > helpful to have discussion in a space with more general distribution 
> > developers.
> 
> There are two types of LSS talks - refereed or a discussion topic.  I'm
> suggesting submitting the latter.   I'm not sure what you mean by more
> general distribution developers.  Most of the distros have someone
> attending LSS.

People involved in bootloader work, desktop integration and so on.

-- 
Matthew Garrett | mjg59@srcf.ucam.org

------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity 
planning reports. https://ad.doubleclick.net/ddm/clk/305295220;132659582;e

Re: TPM microconf at Linux Plumbers Conference?

[Jarkko Sakkinen]

On Mon, Jun 06, 2016 at 07:57:13PM +0100, Matthew Garrett wrote:
> Hi,
> 
> I'm looking into running a TPM microconference at the Linux Plubmers 
> Conference in Santa Fe the first week of November. Right now we have a 
> bunch of individual pieces of TPM-related technology, but little overall 
> coherence - almost nobody ships working TPM-enabled bootloaders, we have 
> no known-good PCR values available, distributions are unclear on what 
> the appropriate TPM 2.0 userlands to ship are, we don't even have a spec 
> for how PCRs should be used under Linux.
> 
> If this seems like it'd be useful, please add your name to 
> http://wiki.linuxplumbersconf.org/2016:tpms along with any additional 
> topics you'd like to discuss - and if you'd like to lead a short 
> discussion session, drop me an email with a description.

I'd be interested to join. If I get budget for this from my employer,
I'll be definitely here.

> Thanks!
> -- 
> Matthew Garrett | mjg59-1xO5oi07KQx4cg9Nei1l7Q@public.gmane.org

/Jarkko

------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity 
planning reports. https://ad.doubleclick.net/ddm/clk/305295220;132659582;e

Re: TPM microconf at Linux Plumbers Conference?

[Jarkko Sakkinen]

On Tue, Jun 07, 2016 at 04:19:54PM +0300, Jarkko Sakkinen wrote:
> On Mon, Jun 06, 2016 at 07:57:13PM +0100, Matthew Garrett wrote:
> > Hi,
> > 
> > I'm looking into running a TPM microconference at the Linux Plubmers 
> > Conference in Santa Fe the first week of November. Right now we have a 
> > bunch of individual pieces of TPM-related technology, but little overall 
> > coherence - almost nobody ships working TPM-enabled bootloaders, we have 
> > no known-good PCR values available, distributions are unclear on what 
> > the appropriate TPM 2.0 userlands to ship are, we don't even have a spec 
> > for how PCRs should be used under Linux.
> > 
> > If this seems like it'd be useful, please add your name to 
> > http://wiki.linuxplumbersconf.org/2016:tpms along with any additional 
> > topics you'd like to discuss - and if you'd like to lead a short 
> > discussion session, drop me an email with a description.
> 
> I'd be interested to join. If I get budget for this from my employer,
> I'll be definitely here.

I can now confirm to be present here.

/Jarkko

------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity 
planning reports. http://sdm.link/zohodev2dev

Re: TPM microconf at Linux Plumbers Conference?

[Jarkko Sakkinen]

On Tue, Aug 09, 2016 at 10:10:30AM +0300, Jarkko Sakkinen wrote:
> On Tue, Jun 07, 2016 at 04:19:54PM +0300, Jarkko Sakkinen wrote:
> > On Mon, Jun 06, 2016 at 07:57:13PM +0100, Matthew Garrett wrote:
> > > Hi,
> > > 
> > > I'm looking into running a TPM microconference at the Linux Plubmers 
> > > Conference in Santa Fe the first week of November. Right now we have a 
> > > bunch of individual pieces of TPM-related technology, but little overall 
> > > coherence - almost nobody ships working TPM-enabled bootloaders, we have 
> > > no known-good PCR values available, distributions are unclear on what 
> > > the appropriate TPM 2.0 userlands to ship are, we don't even have a spec 
> > > for how PCRs should be used under Linux.
> > > 
> > > If this seems like it'd be useful, please add your name to 
> > > http://wiki.linuxplumbersconf.org/2016:tpms along with any additional 
> > > topics you'd like to discuss - and if you'd like to lead a short 
> > > discussion session, drop me an email with a description.
> > 
> > I'd be interested to join. If I get budget for this from my employer,
> > I'll be definitely here.
> 
> I can now confirm to be present here.

PS. One related topic worth of discussing would be event log handover
from boot loader to the OS. We need to find some defacto approach for
it shared by different boot loaders as TCG hasn't standardized anything
similar to TCPA for TPM2.

/Jarkko

------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity 
planning reports. http://sdm.link/zohodev2dev

Re: [Linux-ima-devel] TPM microconf at Linux Plumbers Conference?

[Mimi Zohar]

Hi Jarkko,

On Fri, 2016-08-12 at 12:14 +0300, Jarkko Sakkinen wrote:
> On Tue, Aug 09, 2016 at 10:10:30AM +0300, Jarkko Sakkinen wrote:

> PS. One related topic worth of discussing would be event log handover
> from boot loader to the OS. We need to find some defacto approach for
> it shared by different boot loaders as TCG hasn't standardized anything
> similar to TCPA for TPM2.

Is there a reference for "TCPA"?

Thanks!

Mimi


------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity 
planning reports. http://sdm.link/zohodev2dev

Re: [Linux-ima-devel] [tpmdd-devel] TPM microconf at Linux Plumbers Conference?

[James Bottomley]

On Fri, 2016-08-12 at 08:25 -0400, Mimi Zohar wrote:
> Hi Jarkko,
> 
> On Fri, 2016-08-12 at 12:14 +0300, Jarkko Sakkinen wrote:
> > On Tue, Aug 09, 2016 at 10:10:30AM +0300, Jarkko Sakkinen wrote:
> 
> > PS. One related topic worth of discussing would be event log 
> > handover from boot loader to the OS. We need to find some defacto 
> > approach for it shared by different boot loaders as TCG hasn't 
> > standardized anything similar to TCPA for TPM2.
> 
> Is there a reference for "TCPA"?

TCPA just means Trusted Computing Platform Alliance.  I'm not sure if
this is what you're looking for but it's the TCPA architecture spec:

http://www.trustedcomputinggroup.org/tcpa-main-specification-version-1-1b/

James



------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity 
planning reports. http://sdm.link/zohodev2dev

Re: [Linux-ima-devel] TPM microconf at Linux Plumbers Conference?

[Jarkko Sakkinen]

On Fri, Aug 12, 2016 at 08:25:21AM -0400, Mimi Zohar wrote:
> Hi Jarkko,
> 
> On Fri, 2016-08-12 at 12:14 +0300, Jarkko Sakkinen wrote:
> > On Tue, Aug 09, 2016 at 10:10:30AM +0300, Jarkko Sakkinen wrote:
> 
> > PS. One related topic worth of discussing would be event log handover
> > from boot loader to the OS. We need to find some defacto approach for
> > it shared by different boot loaders as TCG hasn't standardized anything
> > similar to TCPA for TPM2.
> 
> Is there a reference for "TCPA"?
> 
> Thanks!

Refer to http://www.trustedcomputinggroup.org/tcg-acpi-specification/

> Mimi

/Jarkko

------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity 
planning reports. http://sdm.link/zohodev2dev

Re: [TrouSerS-users] [Linux-ima-devel] TPM microconf at Linux Plumbers Conference?

[Jarkko Sakkinen]

On Fri, Aug 12, 2016 at 01:37:06PM -0700, James Bottomley wrote:
> On Fri, 2016-08-12 at 08:25 -0400, Mimi Zohar wrote:
> > Hi Jarkko,
> > 
> > On Fri, 2016-08-12 at 12:14 +0300, Jarkko Sakkinen wrote:
> > > On Tue, Aug 09, 2016 at 10:10:30AM +0300, Jarkko Sakkinen wrote:
> > 
> > > PS. One related topic worth of discussing would be event log 
> > > handover from boot loader to the OS. We need to find some defacto 
> > > approach for it shared by different boot loaders as TCG hasn't 
> > > standardized anything similar to TCPA for TPM2.
> > 
> > Is there a reference for "TCPA"?
> 
> TCPA just means Trusted Computing Platform Alliance.  I'm not sure if
> this is what you're looking for but it's the TCPA architecture spec:
> 
> http://www.trustedcomputinggroup.org/tcpa-main-specification-version-1-1b/

I stated things bit incorrectly in my original response.

The ACPI table called TCPA is a kind of counter part for TPM2 ACPI table
with TPM 1.x chips. The key problem with TPM2 table is that it does not
have a memory reference for the event log.

The problem to discuss is how could boot loaders handover such data to the
OS.

> James

/Jarkko

------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are 
consuming the most bandwidth. Provides multi-vendor support for NetFlow, 
J-Flow, sFlow and other flows. Make informed decisions using capacity 
planning reports. http://sdm.link/zohodev2dev

Re: TPM microconf at Linux Plumbers Conference?

[Nayna]

On 06/07/2016 12:27 AM, Matthew Garrett wrote:
> Hi,
>
> I'm looking into running a TPM microconference at the Linux Plubmers
> Conference in Santa Fe the first week of November. Right now we have a
> bunch of individual pieces of TPM-related technology, but little overall
> coherence - almost nobody ships working TPM-enabled bootloaders, we have
> no known-good PCR values available, distributions are unclear on what
> the appropriate TPM 2.0 userlands to ship are, we don't even have a spec
> for how PCRs should be used under Linux.
>
> If this seems like it'd be useful, please add your name to
> http://wiki.linuxplumbersconf.org/2016:tpms along with any additional
> topics you'd like to discuss - and if you'd like to lead a short
> discussion session, drop me an email with a description.

One topic I would like to suggest for the discussion is "Standardization 
of Device Tree Bindings for TPM".

Currently, TCG Specs also do not have information on Device Tree based 
mechanisms either for TPM 1.2 or TPM 2.0.

>
> Thanks!
>

Thanks & Regards,
   - Nayna


------------------------------------------------------------------------------

Re: [tpmdd-devel] TPM microconf at Linux Plumbers Conference?

[James Bottomley]

On Wed, 2016-08-31 at 23:10 +0530, Nayna wrote:
> On 06/07/2016 12:27 AM, Matthew Garrett wrote:
> > Hi,
> > 
> > I'm looking into running a TPM microconference at the Linux
> > Plubmers
> > Conference in Santa Fe the first week of November. Right now we
> > have a
> > bunch of individual pieces of TPM-related technology, but little
> > overall
> > coherence - almost nobody ships working TPM-enabled bootloaders, we
> > have
> > no known-good PCR values available, distributions are unclear on
> > what
> > the appropriate TPM 2.0 userlands to ship are, we don't even have a
> > spec
> > for how PCRs should be used under Linux.
> > 
> > If this seems like it'd be useful, please add your name to
> > http://wiki.linuxplumbersconf.org/2016:tpms along with any
> > additional
> > topics you'd like to discuss - and if you'd like to lead a short
> > discussion session, drop me an email with a description.
> 
> One topic I would like to suggest for the discussion is 
> "Standardization of Device Tree Bindings for TPM".

This has been accepted by Plumbers now, so the way you submit topics
for discussion is via the website:

https://www.linuxplumbersconf.org/2016/ocw/events/LPC2016/proposals

James


> Currently, TCG Specs also do not have information on Device Tree
> based mechanisms either for TPM 1.2 or TPM 2.0.
> 
> > 
> > Thanks!
> > 
> 
> Thanks & Regards,
>    - Nayna
> 
> 
> ---------------------------------------------------------------------
> ---------
> _______________________________________________
> tpmdd-devel mailing list
> tpmdd-devel@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/tpmdd-devel
> 


------------------------------------------------------------------------------

Re: TPM microconf at Linux Plumbers Conference?

[Jason Gunthorpe]

On Mon, Jun 06, 2016 at 09:11:48PM +0100, Matthew Garrett wrote:
> On Mon, Jun 06, 2016 at 01:10:22PM -0700, Peter Huewe wrote:
> 
> > Thanks for the proposal and pursuing this effort.
> > Not sure whether I can join, sine I should be back in Germany by that time.
> > Is a valid plumbers registration necessary?
> 
> Yes, you'd need to be registered - there's usually some number available 
> for people leading discussion topics at microconferences, but I don't 
> know for sure that that'd be possible.

FWIW, I will be attending plumbers as well, if there is no
conflict with the RDMA track I will try to attend the TPM sessions.

Regards,
Jason

------------------------------------------------------------------------------

Re: TPM microconf at Linux Plumbers Conference?

[James Bottomley]

On Fri, 2016-09-09 at 10:44 -0600, Jason Gunthorpe wrote:
> On Mon, Jun 06, 2016 at 09:11:48PM +0100, Matthew Garrett wrote:
> > On Mon, Jun 06, 2016 at 01:10:22PM -0700, Peter Huewe wrote:
> > 
> > > Thanks for the proposal and pursuing this effort.
> > > Not sure whether I can join, sine I should be back in Germany by 
> > > that time. Is a valid plumbers registration necessary?
> > 
> > Yes, you'd need to be registered - there's usually some number 
> > available for people leading discussion topics at microconferences, 
> > but I don't know for sure that that'd be possible.
> 
> FWIW, I will be attending plumbers as well, if there is no
> conflict with the RDMA track I will try to attend the TPM sessions.

RDMA is a KS workshop, so it will be on Tuesday.  The Plumbers schedule
isn't out yet, but the plan is for Tuesday to be KS only, so the TPM MC
should be on Wed-Fri.

James


------------------------------------------------------------------------------