|
|
Subscribe / Log in / New account

A report from the 2022 Image-Based Linux Summit

A report from the 2022 Image-Based Linux Summit

Posted Nov 4, 2022 15:57 UTC (Fri) by aszs (subscriber, #50252)
Parent article: A report from the 2022 Image-Based Linux Summit

I've been intrigued for a while about possibilities afforded from combining open-source reproducible builds with remote attestation.

Imagine a certificate authority like Let's Encrypt but the challenge it requires for signing the request isn't only to prove the server answers to the cert's domain but also a remote attestation that the server is running the reproducible workload whose digest is in the cert. Then as a user I can have some assurance that the server I'm connecting to is running the code I'm expecting it to just by checking that digest.

Sounds like we're getting closer but how far away is the state-of-the-art from having the necessary building blocks to enabling something like this? What is missing?

to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds