SNIA-SDC23-Nelogal-SPDM-1.3-and-Beyond.pdf

1、SPDM 1.3 and BeyondSep 2023Chandra NelogalDMTS,Dell TechnologiesCo-Chair,Storage Work Group,TCGThe information in this presentation represents a snapshot of work in progress within the DMTF.This information is subject to change without notice.The standard specifications remain the normative referenc

2、e for all information.For additional information,see the DMTF website.This information is a summary of the information that will appear in the specifications.See the specifications for further details.2DMTF ConfidentialDisclaimerComponent Threat VectorsDMTF ConfidentialSPDMs Overall GoalsAll SPDM fe

3、atures fall into at least one of following main goals:Device Attestation and AuthenticationThe ability to attest various aspects of a device such as firmware integrity and device identitySecure Communication over any TransportProvide the ability to secure communication of any data or management traf

4、fic over any transportWork with industry partners to ensure data in-flight is secure for all parts of the infrastructure(e.g.storage,network fabrics,etc.)DMTF ConfidentialAlliance Partners and AdoptersSPDM Feature Summary(2023)Version 1.0:Measurement SupportDevice Attestation and AuthenticationVersi

5、on 1.1:Secure SessionPublic Key ExchangeSymmetric Key ExchangeMutual AuthenticationVersion 1.2:Supports installation of certificatesAllows for alias certificates derived from device certificatesSend and receive large SPDM messages(chunks)Added SM2,SM3,SM4 algorithms to supported listNew OIDs addedDe

6、precated basic mutual authentication in CHALLENGE and CHALLENGE_AUTHDMTF ConfidentialSPDM 1.3 FeaturesEvent Notification MechanismMulti Key SupportNew MeasurementsMeasurement Extension LogStructured Manifest formatEnd Point InfoDMTF ConfidentialEvent Mechanism Subscribed events Interested Event Type