Re: F37 Change: Support FIDO Device Onboarding (Self-Contained Change proposal)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Tue, 2022-03-29 at 14:38 +0000, Peter Robinson wrote:
> > > > > Can we get a link to the actual software stack being
> > > > > proposed?
> > > > > The link in this proposal is a marketing post ...
> > > > 
> > > > Yes, that was an oversight, for reference:
> > > > https://github.com/fedora-iot/fido-device-onboard-rs
> > > 
> > > For reference it's under scope where I mentioned the
> > > implementation
> > > and clearly forgot to add the link.
> > > 
> > 
> > This is pretty neat! What kind of stuff can be done with this
> > onboarding system?
> 
> It's designed to be small and straight forward, do one job securely

Where is the security part coming from ?
Does this require devices to be pre-registred/pre-seeded with some root
of trust?
Or is it TOFU ?

Or something else?

> and succinctly. It's extendable by SIMs (Service Information Modules)
> and ATM we have a small set of SIMs to do things like add a
> user/ssh-key, add a file and run a command. We'll be adding
> functionality like the ability to specify OTA update URLs.
> _______________________________________________
> devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx
> To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
> Fedora Code of Conduct:
> https://docs.fedoraproject.org/en-US/project/code-of-conduct/
> List Guidelines:
> https://fedoraproject.org/wiki/Mailing_list_guidelines
> List Archives:
> https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx
> Do not reply to spam on the list, report it:
> https://pagure.io/fedora-infrastructure

-- 
Simo Sorce
RHEL Crypto Team
Red Hat, Inc



_______________________________________________
devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Fedora Announce]     [Fedora Users]     [Fedora Kernel]     [Fedora Testing]     [Fedora Formulas]     [Fedora PHP Devel]     [Kernel Development]     [Fedora Legacy]     [Fedora Maintainers]     [Fedora Desktop]     [PAM]     [Red Hat Development]     [Gimp]     [Yosemite News]

  Powered by Linux