Differences between revisions 5 and 6
Revision 5 as of 2018-01-12 17:41:14
Size: 1049
Editor: HectorOron
Comment:
Revision 6 as of 2018-01-12 18:11:04
Size: 1808
Editor: ?HelenKoike
Comment:
Deletions are marked like this. Additions are marked like this.
Line 17: Line 17:
 * TBD  * Secure Boot goal (easy to install? Or security first?)
 * Current state
 * Signing infrastructure proposals
 * Integration with Dak and potential issues
 * Integration with Buildd, concerns with the NEW queue and other potential issues
 * Potential issues with embargoes packages / security uploads
 * Potential issues with binNMU uploads
 * Signing duration time concerns, resource management
 * Reproducible builds
 * Revocation process
 * Manual process vs automated (security concerns)
 * Signing box, extending beyond secure boot (should everything be signed?)
 * Packages to be signed (grub, kernel, fwupdate)
 * Architectures (amd64, i386, arm64, ...?)
 * Credentials, who can upload files to be signed, update shim, access the signing key?

Secure Boot 2018 Sprint

Date, Location

Participants

Please fill in the table below with your details.

#

Name

E-Mail

Nick

Arrival

Departure

Confirmed

(Long) PGP ID

Thu

Fri

Sat

Sun

Need travel sponsor?

Need accomodation sponsor?

Need food sponsor?

Notes

01

Agenda

  • Secure Boot goal (easy to install? Or security first?)
  • Current state
  • Signing infrastructure proposals
  • Integration with Dak and potential issues
  • Integration with Buildd, concerns with the NEW queue and other potential issues
  • Potential issues with embargoes packages / security uploads
  • Potential issues with binNMU uploads
  • Signing duration time concerns, resource management
  • Reproducible builds
  • Revocation process
  • Manual process vs automated (security concerns)
  • Signing box, extending beyond secure boot (should everything be signed?)
  • Packages to be signed (grub, kernel, fwupdate)
  • Architectures (amd64, i386, arm64, ...?)
  • Credentials, who can upload files to be signed, update shim, access the signing key?

Reports

  • sprint: Secure Boot Sprint

  • announcement: Secure Boot Sprint Mar 2018 Announcement
  • report: Secure Boot Sprint 2018-03 Report

Acknowledgements

the sprint has been possible thanks to:

Hosting alternatives

  • Linux Hotel

Food alternatives

  • Linux Hotel


CategorySprint