OpenAttestation

The OpenAttestation (OAT) project was created to provide a software development kit (SDK) for the development of cloud management tools. These tools are capable of establishing hosts' integrity information by remotely retrieving and verifying the hosts' integrity with Trusted Platform Module (TPM) quotes.

Description

This project provides: A cloud management tool software development kit (SDK) source code and binaries

The value of the OpenAttestation project

This project provides an SDK to create cloud management tools. These tools are capable of establishing the hosts’ integrity information by remotely retrieving and verifying integrity with Trusted Platform Module (TPM) quotes. OpenStack and oVirt both use OpenAttestation.

Key features include:

  • Support for major Linux host operating systems
  • PCR-based report schema and policy rules
  • RESTful based Query API
  • Reference web portal/GUI implementation
  • Historical PCRs data tracking/comparison
  • Whitelist management
  • Flexible access control to attestation server
  • Supports Tomcat 2-way SSL/TLS for Query APIs
  • Hook for ISVs to implement custom access control

How OpenAttestation Works

Who it’s for

This toolkit is available for cloud distributing OEMs, operating system vendors, and system builders. OpenAttestation is used by OpenStack, oVirt, Fedora, Ubuntu, and Red Hat Enterprise Linux.

Project specifics

This project is distributed under the BSD license.

About Intel involvement

These open source optimizations are used in servers featuring Intel® Atom™ processors, Intel® Xeon® processors, and Intel® Xeon Phi™ coprocessors.

News & Blogs

OpenAttestation v2.2

By Gang Wei on 03 Feb, 2015

OpenAttestation v2.2 was released December 31, 2014. Refer to https://01.org/openattestation/downloads/v2.2-source-code for release notes and downloading url.

OpenAttestation v1.7

By Gang Wei on 30 Mar, 2014

OpenAttestation v1.7 was released March 31, 2014. Refer to https://01.org/openattestation/downloads/2014/v1.7-source-code for release notes and downloading url.

OpenAttestation v2.1

By Gang Wei on 05 Jan, 2014

OpenAttestation v2.1 was released December 31, 2013. The new features in OAT 2.1 are: Support XenServer* specific Trust Agent Support EK Certificate stored in the file Consolidated TPM access code in NIARL module EC signing on PCA Both...

Security in the Cloud: OpenAttestation Using Intel® TXT

By Sue Clark on 28 Oct, 2013

The OpenAttestation project announced its v2.0 Gold release on September 30, 2013. Security is a major concern impeding cloud adoption, so, to ease concerns, Intel created three important usage models, based on Intel® Trusted Execution Technology (...

Latest Download

Community

Maintainers