Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

add description for key update. #109

Merged
merged 1 commit into from
Apr 16, 2024
Merged

add description for key update. #109

merged 1 commit into from
Apr 16, 2024

Conversation

jyao1
Copy link
Collaborator

@jyao1 jyao1 commented Apr 8, 2024

Fix #55
Fix #53

@jyao1 jyao1 requested a review from sameo April 8, 2024 12:25
sameo
sameo reviewed Apr 15, 2024
View reviewed changes
specification/07-theory_operations.adoc Outdated Show resolved Hide resolved
specification/07-theory_operations.adoc Outdated

In TEE-IO architecture, there are 2 sessions established between the host TSM
and the device: SPDM session and IDE session. Both sessions use AES-GCM-256
keys to protect the data. As such, the host software needs to update the
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
keys to protect the data. As such, the host software needs to update the
keys to protect the data. As such, the host supervisor domain manager needs to update the

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Also, is this a needs or a must ?

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think we can put mandatory requirement for an untrusted software.

specification/07-theory_operations.adoc Outdated Show resolved Hide resolved
specification/07-theory_operations.adoc Outdated Show resolved Hide resolved
specification/07-theory_operations.adoc Outdated Show resolved Hide resolved
specification/07-theory_operations.adoc Outdated Show resolved Hide resolved
specification/09-coveio_abi.adoc Outdated Show resolved Hide resolved
specification/09-coveio_abi.adoc Outdated Show resolved Hide resolved
specification/09-coveio_abi.adoc Outdated Show resolved Hide resolved
specification/09-coveio_abi.adoc Outdated Show resolved Hide resolved
@jyao1 jyao1 force-pushed the key_update branch 2 times, most recently from 03395da to 25c2183 Compare April 16, 2024 07:29
@sameo sameo merged commit e01a141 into riscv-non-isa:main Apr 16, 2024
2 checks passed
@jyao1 jyao1 deleted the key_update branch October 8, 2024 09:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sameo sameo sameo approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

add section for IDE_KM IdeKeyRefresh add section for SPDM Session KeyUpdate
2 participants
@jyao1 @sameo