Meeting 22/05/24 #76
Description
Attendees
- @ansasaki
- @aplanas
- @edwards-n
- @galmasi
- @Isaac-Matthews
- @kkaarreell
- @lkatalin
- @lukehinds
- @maugustosilva
- @mayaCostantini
- @mdrocco
- @mbestavros
- @mheese
- @mruffin
- @mpeters
- Niteesh Dubey
- @osresearch
- @ruocco
- @stringlytyped
- @stefanberger
- @THS-on
- @tpletcher-hpe
- @ueno
- @sergio-correia
- Supreshna
- Christian Schilling
Time: 22/05/24 15:30 BST (https://www.timeanddate.com/worldclock/fixedtime.html?msg=Keylime+Meeting&iso=20240522T1530&p1=136&ah=1
Meeting link: https://uni-kiel.zoom-x.de/j/64099423583?pwd=UHNEREsyT0tTNVlRU3RhRkZuQnFGUT09
Agenda
- From Veraison meeting
- How are distribution going to distribute attestation artifacts for end users to use?
- Who is currently involved in that from the different distros?
- What is the right forum to discuss this?
- Policies for Measured Boot etc. generalized format possible?
- Operator updates (Role bindings, service accounts, [openshift] security context constraints for keylime agents attestation-operator#76 and WIP: Create CRD for component deployment attestation-operator#77)
- Push model updates (Add new web framework and re-implement existing REST APIs keylime#1523)
- Adding "named measured boot policies" update
- IMA policy proposal (add a "reject list" Add support for a reject list in runtime policy keylime#1545, from Unable to reject specific hashes in a IMA file signature based runtime policy keylime#1540)
- New version (v7.11.0)
- Documentation synchronization Synchronize the contents of https://keylime-docs.readthedocs.io and https://keylime.readthedocs.io keylime#1519