TrenchBoot DRTM features for AMD platforms
2020-12-02, 21:45–22:15, Main Stage

TrenchBoot is a young open source project aiming at security and integrity of
the boot process leveraging advanced silicon security features, like Intel
Trusted Execution Technology (TXT) and AMD Secure Startup. It integrates with
open source projects like GRUB2 and Linux to perform a measured launch of the
operating system software, also called Dynamic Root of Trust for Measurement.
The presentation will describe the progress of the project, what new features
has been added and what we managed to achieve so far.

In particular 3mdeb has been developing support for the AMD Secure Startup.
Since last year we managed to push the project even further thanks to the
founding from NLnet Foundation, NGI Zero PET grant. The most key changes
introduced into the project are the DRTM event log and the possibility to boot
Xen Hypervisor with measured launch. If you want to hear more what is on our
roadmap and what problems we are still trying to solve, this presentation is
for you.


Related Projects

coreboot, Linux

See also: TrenchBoot DRTM features for AMD platforms

Firmware Engineer with networking background. Feels comfortable with low-level development using C/C++ and assembly. Interested in advanced hardware features, security and coreboot. Core developer of coreboot. Maintainer of Braswell SoC, PC Engines, Protectli and Libretrend platforms. Creating open source firmware solution in 3mdeb Embedded Systems Consulting for 3 years. Active speaker at various open source firmware related conferences: Open Source Firmware Conference 2018 and 2019, Xen Developer And Design Summit 2020 and others.

This speaker also holds:

Piotr Król is a multi-disciplinary executive running several companies in the embedded systems and semiconductor industries, including 3mdeb, LPN Plant, and Vitro Technology. Prior to starting his own companies, he worked as an engineer for Intel for over seven years. Piotr is also an open-source evangelist, active in the Open Source Firmware (e.g. coreboot) and Linux communities.

This speaker also holds: