# FOSDEM 2025 Attestation Devroom CfP Remote attestation, as defined in [NIST IR 7904](https://nvlpubs.nist.gov/nistpubs/ir/2015/NIST.IR.7904.pdf), is an essential component of systems security for all classes of devices, from small IoT devices to server platforms. It is increasingly being integrated across the whole lifecycle of software, from packaging, to deployment, to production use. Its role in providing transparency and authenticating workloads and devices makes it particularly appealing, especially in scenarios where existing authentication methods could benefit from more robust assertions about the security status of endpoints. ## Formats Options for presentation time (excluding discussion) - 10 minutes - 20 minutes - 30 minutes Each talk (irrespective of duration) will be allowed (at least) 5 minutes for discussion. ## Desirable Topics Topics of interest include, but are not limited to: - Attestation and secure channel establishment - Attested TLS: pre-handshake attestation (e.g., Intel's RA-TLS, Veraison, Attested Certificate Signing Request) - Attested TLS: intra-handshake attestation (e.g., TLS attest) - Attested TLS: post-handshake attestation (e.g., TLS exporters, exported authenticators, post-handshake exchange) - Network protocols including attestation such as SPDM - Attestation at HTTP layer, such as HTTP attestable - Attestation over HTTP, such as Key Broker Service (KBS) - Attestation in other protocols - Attestation and credential issuance - Attestation and access control - Attestation in IoT - Attestation in complex systems - Composite attester (disaggregated RoT) representation - Secure device attachment - REST APIs for attestation - Attestation standardisation (formats, conveyance protocols) - Attestation APIs/ABIs/frameworks in open-source OS - Formal analysis of attestation protocols ## Important Dates Submission open: 30th October 2024 Submission deadline: 1st December 2024 Acceptance notifications: 10th December 2024 Final schedule announcement: 15th December 2024 Devroom: 2nd February 2025, 9am-1pm ## Submission of Proposals The Pretalx system will hopefully be open for applications no later than October the 30th, 2024. To submit a talk, please visit the [FOSDEM 2025 Pretalx website](https://pretalx.fosdem.org/fosdem-2025/cfp). Please select "Attestation" as the *track* and ensure you include all the requested information when submitting a proposal. Please be descriptive, as the audience will have to choose to attend your talk out of a listing with ~500 talks from other projects at FOSDEM. Please mention the talk duration (10/20/30 minutes) in the submission notes. ## Code of Conduct We'd like to remind all speakers and attendees that all of the presentations and discussions in our devroom are held under the guidelines set forth in the [FOSDEM Code of Conduct](https://fosdem.org/2025/practical/conduct/) and we expect everyone attending to follow it. ## Organizers If you have any questions, feel free to reach out to us: - Muhammad Usama Sardar (muhammad_usama.sardar at tu-dresden.de) - Thomas Fossati (thomas.fossati at linaro.org)