Andrei Warkentin
Andrei Warkentin
https://github.com/riscv-non-isa/server-soc/issues/45
RoT in this context is "root of trust". UEFI Secure Boot should be feasible, why not? Do you have indications to the contrary? For example, there are multiple explored mechanisms...
SiP -> Silicon Providers. Authenticated variables definitely /can/ be implemented, but the actual underlying mechanism of isolating the MM kernel is SoC and possibly even vendor micro-architecture specific. Here are...
I reached out to [email protected]
Merged https://github.com/riscv-non-isa/riscv-server-platform/pull/22
Coming back here, I've heard nothing back from [email protected], which (needless to say) is pretty disappointing. I would have expected some help to identifying the right party within Microsoft, oh...
Okay I've heard back from uefisign, apparently there was some reorgnanization and the earlier email fell through the seams.
Now waiting for their input...
Probably should be started in a security spec - https://github.com/riscv-non-isa/riscv-os-a-see/issues/21, which could be here or part of a platform spec. The SBI work and subsequent ECR against the TCG ACPI...
Now that we're ratified, let's revisit this for v2.