Try   HackMD

FOSDEM 2025 Attestation Devroom CfP

Remote attestation, as described in Section 3.1 of NIST IR 7904, is an essential component of systems security for all classes of devices, from small IoT devices to server platforms. It is increasingly being integrated across the whole lifecycle of software, from packaging, to deployment, to production use. Its role in providing transparency and authenticating workloads and devices makes it particularly appealing, especially in scenarios where existing authentication methods could benefit from more robust assertions about the security status of endpoints.

Formats

Options for presentation time (excluding discussion)

  • 10 minutes
  • 20 minutes
  • 30 minutes

Each talk (irrespective of duration) will be allowed (at least) 5 minutes for discussion.

Desirable Topics

Topics of interest include, but are not limited to:

  • Attestation and secure channel establishment
    • Attested TLS: pre-handshake attestation (e.g., Intel's RA-TLS, Veraison, Attested Certificate Signing Request)
    • Attested TLS: intra-handshake attestation (e.g., TLS attest)
    • Attested TLS: post-handshake attestation (e.g., TLS exporters, exported authenticators, post-handshake exchange)
    • Network protocols including attestation such as SPDM
    • Attestation at HTTP layer, such as HTTP attestable
    • Attestation over HTTP, such as Key Broker Service (KBS)
    • Attestation in other protocols
  • Attestation and credential issuance
  • Attestation and access control
  • Attestation in IoT
  • Attestation in complex systems
    • Composite attester (disaggregated RoT) representation
    • Secure device attachment
  • REST APIs for attestation
  • Attestation standardisation (formats, conveyance protocols)
  • Attestation APIs/ABIs/frameworks in open-source OS
  • Formal analysis of attestation protocols

Important Dates

Submission open: 30th October 2024
Submission deadline: 1st December 2024
Acceptance notifications: 10th December 2024
Final schedule announcement: 15th December 2024
Devroom: 2nd February 2025, 9am-1pm

Submission of Proposals

The Pretalx system will hopefully be open for applications no later than October the 30th, 2024.

To submit a talk, please visit the FOSDEM 2025 Pretalx website. Please select "Attestation" as the track and ensure you include all the requested information when submitting a proposal. Please be descriptive, as the audience will have to choose to attend your talk out of a listing with ~500 talks from other projects at FOSDEM.

Please mention the talk duration (10/20/30 minutes) in the submission notes.

Code of Conduct

We'd like to remind all speakers and attendees that all of the presentations and discussions in our devroom are held under the guidelines set forth in the FOSDEM Code of Conduct and we expect everyone attending to follow it.

Organizers

If you have any questions, feel free to reach out to us:

Last changed by 
Thomas Fossati
0
1006
Published on HackMD