ConnectX7 Certificates

ConnectX-7 supports DICE attestation measurements, with its certificate chain stored in SPDM certificate slot 0. The device also supports the provisioning of customer certificate chains in additional slots.

The figure below shows the pre-provisioned attestation certificate chain for ConnectX-7. Certificates L1-L3 are included in the ConnectX-7 image, while certificate L4 is provisioned during production and stored in write-protected memory.

During boot, ConnectX-7’s HW-RoT and secure privileged code generate additional run-time certificates, which are stored in volatile internal memory. L6 serves as the leaf certificate, and its private key is used to sign ConnectX-7 SPDM measurements. The complete certificate chain is sent in response to the SPDM GET_CERTIFICATE command and stored in SPDM certificate slot 0. 

The certificates L5, L6 contain evidence as x.509 certificate extension in section 2.23.133.5.4.1, and specifically TCG_DICE_FWID-0, TCG_DICE_FWID-1 and TCG_DICE_FWID-1 respectively.

• TCG_DICE_FWID-0 contains a SHA2-384 hash of the hardware configuration and the first mutable firmware code.

• TCG_DICE_FWID-1 contains a SHA2-384 hash of the runtime firmware code.

• TCG_DICE_FWID-2 contains a SHA2-384 hash of the runtime firmware code.

A CoRIM containing FWID-0, FWID-1, and FWID-2 will be provided upon request.

ConnectX-7 follows the TCG draft for Implicit Identity-Based Device Attestation Version 1.0, Revision 0.93. As a result, ConnectX-7 places the TCG-DICE-FWID in the OID 2.23.133.5.4.1, which is technically reserved for TCG-DICE-TCBINFO according to the TCG OID registry.

The CoRIM files include the same measurement block definition encoded in base64 format, as outlined below. If the table indicates "Yes" under the "Part of CoRIM" column, the index is included in the CoRIM file; otherwise, it is excluded.