OpenBMC Security Working Group Kick Off
Vernon Mauery
vernon.mauery at linux.intel.com
Fri Jun 1 05:53:48 AEST 2018
On 31-May-2018 06:38 PM, Stewart Smith wrote:
>Nancy Yuen <yuenn at google.com> writes:
>> The OpenBMC Security Work Group kick off meeting is scheduled for Thurs May
>> 31, 9AM PDT. This first meeting is by invite only. Please email me if you
>> are interested in participating in this working group.
>
>Would topics like "security of the BMC from a hostile host" be part of
>this?
I would vote yes. From a platform architecture, while the pre-boot
communications from the Host might be more trusted, after the OS boots,
the host should be considered hostile.
>A design of OpenPOWER systems is that the BMC and the Host don't have to
>trust each other, and this should extend to a host that's hostile
>towards the BMC.
I agree. This is just a plain good design choice. :)
--Vernon
>I'd be surprised if we didn't find bugs in both mboxd and host ipmi if
>we started fuzzing those interfaces.
>
>--
>Stewart Smith
>OPAL Architect, IBM.
>
More information about the openbmc
mailing list