From Fedora Project Wiki

Revision as of 12:41, 28 January 2013 by Jreznik (talk | contribs) (Feature has been announced on devel-announce mailing list on 2013-01-28)

OpenAttestation

Summary

Provide fedora packages for OpenAttestation to support Trusted Compute Pools(TCP) feature in OpenStack since Folsom release & in future oVirt releases.

Owner

Current status

  • Targeted release: Fedora 19
  • Last updated: 2013-01-24
  • Percentage of completion: 30%

Detailed Description

This feature would include mostly packaging OpenAttestation project for fedora.

  • the source package will be named oat
  • the binary packages will include oat-appraiser & oat-client

Benefit to Fedora

Fedora will be capable to be used to deploy OpenStack with TCP feature.

Scope

Required steps are:

  1. Create new package oat for OpenAttestation.

How To Test

  • It requires platforms supporting Intel TXT.
  • It requires installing tboot package.
  • OpenAttestation provides a series of test scripts for API testing.

User Experience

Provide cloud users capability of get the trustworthness of a specific host/server.

Dependencies

tboot, ant, trousers-devel, httpd, tomcat6, mysql, mysql-server, php, php-mysql, java-openjdk-devel

Contingency Plan

None necessary, revert to previous release behaviour.

Documentation

OpenAttestation project web page

Documentation about OpenAttestation functionality

Trusted Compute Pools feature in OpenStack: http://wiki.openstack.org/TrustedComputingPools

Trusted Compute Pools feature in oVirt: http://wiki.ovirt.org/wiki/Trusted_compute_pools

Release Notes

  • OpenAttestation provides REST based API to add cloud management tools with capability of establishing hosts integrity information by remotely retrieving and verifying Hosts' integrity with TPM quote.

Comments and Discussion