Nov 10, 2020 SOURCE: PR NewsWire

OCP Announces V1.0 of Security Requirements Documents, improving security and trust for future OCP servers with hardware root-of-trust

AUSTIN, Texas, Nov. 10, 2020 /PRNewswire/ -- The Open Compute Project Foundation (OCP) is excited to announce version 1.0 of the Root of Trust (RoT) specification. This model is based on the concept that every OCP device must first have a RoT responsible for verifying the device firmware at boot time, keeping it authentic & secure during updates, and recovering it when a corruption occurs.

OCP is also excited to announce that many member companies, including Kameleon Security, Nuvia Inc., Rambus, and ASPEED Technology, have announced their plans to support the OCP Security specifications.

"Root of Trust is foundational to establishing a trusted platform. This specification and the future attestation and boot specifications from the OCP Security Project will result in best-in-class platform security. In the future, anyone deploying OCP Accepted(tm) products are assured they are deploying a secure & trusted system to run their business," states Bill Carter, CTO for the Open Compute Project.

"ASPEED Technology supports the efforts of the OCP Security project and would take the recommendations into our BMC and Security Products. We're looking forward to making security a top priority by providing products that meet or exceed the OCP Security requirements," said Dwaka Partani, VP and General Manager at ASPEED Technology.

"Kameleon has been an active contributor to the Open Compute Security project from day one, and we're looking forward to raising the bar for data center security, and delivering security from the hardware up. This week, we're also happy to announce our collaboration with Xilinx to deliver our ProSPU, a proactive Security Processing Unit that will be an OCP-compliant RoT, and expand that into run-time server protection," said Yigal Edery, VP Products of Kameleon.

The OCP Security project has defined two RoT components. The Platform Active RoT (PA RoT) is the "main" root of trust for the platform. It is responsible for verifying the system firmware, and for verifying the integrity of the peripherals. The other one is the Active Component RoT (AC RoT), which resides on every peripheral, verifies the integrity of that specific peripheral, and should report back, in a process called attestation, to the platform to prove its integrity. The process for doing that is called peripheral attestation.

Please refer to the blog "OCP Security Announces version 1.0 specs for Root of Trust" authored by Yigal Edery, VP Products, Kameleon Security & Rajeev Sharma, Director of Software & Technologies at Open Compute Project, to get more information on the Root Of Trust speciation along with the release of the following specifications.

    1. Secure Boot - covers the requirements needed in order to be able to
       verify firmware integrity during boot.
    2. Peripheral Attestation - covers the requirements for having a unique
       identity for every device, and the ability to securely communicate device
       measurements from the AC RoT to the PA RoT.
    3. Threats Scope - a document that explains the various threat vectors being
       defended against, and helps map each of them to relevant feature
       requirements in the specs.

OCP looks forward to the Community eco-system embracing these specifications and delivering secure servers & solutions to the market.

About OCP
The Open Compute Project Foundation (OCP) was initiated in 2011 with a mission to apply the benefits of open source and open collaboration to hardware and rapidly increase the pace of innovation in, near and around the data center's networking equipment, general purpose and GPU servers, storage devices and appliances, and scalable rack designs. OCP's collaboration model is being applied beyond the data center, helping to advance the telecom industry & EDGE infrastructure.

Media Contact
Dirk Van Slyke
Open Compute Project Foundation
Vice President, Chief Marketing Officer
dirkv@opencompute.org
Office: +1 281-667-4644
Mobile: +1 303-999-7398
(Central Time Zone/CST/Houston, TX)

View original content to download multimedia:http://www.prnewswire.com/news-releases/ocp-announces-v1-0-of-security-requirements-documents-improving-security-and-trust-for-future-ocp-servers-with-hardware-root-of-trust-301169974.html

SOURCE Open Compute Project Foundation

OPEN COMPUTE PROJECT FOUNDATION

Related News

Open Compute Project Foundation and JEDEC Drive Open Silicon Innovation

ZincFive Joins the Open Compute Project Foundation (OCP)

The Open Compute Project Accelerating Deployment of Next Gen AI Clusters

Open Compute Project Foundation Expands Its Open Systems for AI Initiative

Leading data center companies partner with Open Compute Project Foundation and WJE to trial Green Concrete!

Urban Computing Foundation to Host the Mapzen Project

OCP Announces today that SpaceDC is the first OCP Ready(TM) facility in Asia-Pacific

Open Compute Project Foundation and UALink(TM) Consortium Announce a New Collaboration

View all News

Latest Procurements

Deadline: Jun 26, 2025

Procurement Of Spares For Rafale Aircraft

648. 30-Apr-2025 05:00 PM 26-Jun-2025 03:00 PM 03-Jul-2025 03:00 PM PROCUREMENT OF SPARES FOR RAFALE AIRCRAFT/AIR HQ/DPROC/25-26/W25012/PUR/2025_IAF_705992_1 Indian Air Force -- Organisation Details : Organisation Name :...

Deadline: May 9, 2025

Net Camouflage Shrimp Type (Defence) (Q2) Quantity: 49

BID NO: GEM/2025/B/6181868 View Corrigendum/RepresentationItems: Net Camouflage Shrimp Type (De...Quantity: 49Department Name And Address: Ministry of DefenceDepartment of Military AffairsStart Date: 30-04-2025 5:43 PMEnd Date: 09-05-2025 9:00 AM

Deadline: May 14, 2025

C17 Reman (Arm/Fire Initiators)

{'NoticeId': 'ca42467e28284f50b94056a63d99dce1', 'Title': 'C17 REMAN (Arm/Fire Initiators)', 'Sol#': 'FA8213-25-R-3024', 'Department/Ind.Agency': 'DEPT OF DEFENSE', 'CGAC': '057', 'Sub-Tier': 'DEPT OF THE AIR FORCE', 'FPDS Code': '5700', 'Office': 'FA8213 AFLCMC EBHK', 'AAC Code':...

View all Procurementsp