This presentation will show the progress on developing TrenchBoot, an open-source implementation of DRTM, and how Xen hypervisor fits into the TrenchBoot project. An architecture comprising of purely open-source software beginning with firmware (coreboot), bootloader (GRUB) and virtualized operating system (Xen + Dom0) is being attested using the TPM 2.0. The solution intends to protect and verify the integrity of the software stack by leveraging elements of safeboot (check out safeboot.dev) and dm-verity.
To submit a design session or vote on which design sessions you’d like to see, go to
https://design-sessions.xenproject.org/
Video Stream