We should add a way to securely boot nodes (that have TPMs presumably). This probably involves EUFI secure boot, https boot, and some sort of asymmetric key auth.
In my mind it goes something like:
We get/dump a key from/to the nodes TPM via redfish (an out of band operation)
the node boots, and loads a custom EUFI. This EUFI does a cert validation for what's on the node TPM. (maybe extraneous?)
The node moves to EUFI secure boot, using the TPM stored key to verify the payload it recieves.
The node chainboots into https boot, using the same key to do https boot
I think this is something that could happen a lot of different ways, the above is just my take on it.
Short Description:
We should add a way to securely boot nodes (that have TPMs presumably). This probably involves EUFI secure boot, https boot, and some sort of asymmetric key auth. In my mind it goes something like:
I think this is something that could happen a lot of different ways, the above is just my take on it.