On Wed, Nov 24, 2021 at 12:38:31AM +0000, Alasdair G Kergon wrote: > There seems to be a general industry movement towards edge, attestation, > trusted boot, nested systems, confidential computing, containers, > <insert your favourite buzzwords> etc. and I think this type of > device-mapper target might play a useful role as one of the low-level > components involved in building up support for some of those scenarios. > (Just as we recently began adding support for attestation.) For example, I think we've already made good progress towards standardising the industry around dm-verity. (At least, I keep on encountering it being used in various different places, rather than people attempting to develop their own version.) We extended that concept with dm-integrity but I'm less sure about how widely that has been taken up so far. For edge systems needing unattended remote reliable updates, our high-level challenge here is: Can we together develop a decent and efficient solution for OTA updates that the industry will be happy to standardise around? Alasdair -- dm-devel mailing list dm-devel@xxxxxxxxxx https://listman.redhat.com/mailman/listinfo/dm-devel
