From Fedora Project Wiki

< Features

Revision as of 15:39, 20 March 2013 by Jreznik (talk | contribs) (Retarget to Fedora 20 as agreed with Feature owner)

The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.

OpenAttestation

Summary

Provide Fedora packages for OpenAttestation to support Trusted Compute Pools(TCP) feature in OpenStack since Folsom release & in future oVirt releases.

Owner

Current status

  • Targeted release: Fedora 20
  • Last updated: 2013-03-20
  • Percentage of completion: 70%

Package review request submitted as: https://bugzilla.redhat.com/show_bug.cgi?id=915864.

Detailed Description

This feature would include mostly packaging OpenAttestation project for Fedora.

  • the source package will be named oat
  • the binary packages will include oat-appraiser, oat-client, oat-commandtool & oat-docs.

Benefit to Fedora

Fedora will be capable to be used to deploy OpenStack with TCP feature.

Scope

Required steps are:

  1. Create new package oat for OpenAttestation.

How To Test

  • It requires platforms supporting Intel TXT.
  • It requires installing tboot package.
  • OpenAttestation provides a series of test scripts for API testing.

User Experience

Provide cloud users capability of get the trustworthness of a specific host/server.

Dependencies

tboot, ant, trousers-devel, httpd, tomcat6, mysql, mysql-server, php, php-mysql, java-openjdk-devel

Contingency Plan

None necessary, revert to previous release behaviour.

Documentation

OpenAttestation project web page

Documentation about OpenAttestation functionality

Trusted Compute Pools feature in OpenStack: http://wiki.openstack.org/TrustedComputingPools

Trusted Compute Pools feature in oVirt: http://wiki.ovirt.org/wiki/Trusted_compute_pools

Release Notes

  • OpenAttestation provides REST based API to add cloud management tools with capability of establishing hosts integrity information by remotely retrieving and verifying Hosts' integrity with TPM quote.

Comments and Discussion