[svsm-devel] Questions about crypto support
Jörg Rödel
joro at 8bytes.org
Tue Sep 26 20:49:59 CEST 2023
On Mon, Sep 25, 2023 at 11:38:54PM -0400, Claudio Carvalho wrote:
> My impression is that FIPS 140 is a complicated problem when it comes to
> firmware and it seems too big to be considered now. I would like to hear what
> you guys think about that and if CPL0 should have it's own crypto (e.g.
> RustCrypto) in order to simplify the design. At the moment, the only crypto
> requirement we have for CPL0 code is AES_GCM, which is required by the
> attestation report feature.
Agreed, we do not make any decision here yet. Lets start simple and get
vTPM support in CPL3 up and running. Once that is done we can start
improving and extending things as we see need.
Regards,
Joerg
More information about the Svsm-devel
mailing list