NVIDIA Device Attestation and CoRIM-based Reference Measurement Sharing v3.0

Introduction

Device attestation based on SPDM standard and OCP guidelines is introduced in NVIDIA® BlueField®-3, NVIDIA® ConnectX®-8 and NVIDIA® ConnectX®-7 using SPDM v1.1. Attestation is a mechanism in which a host/platform automatically verifies the authenticity and integrity of the hardware and software state of a device The mechanism is based on a hardware RoT (either internal to a specific device, or external to it). This provides the added value of increased security and assurance that the device, or platform, has not being misconfigured and has the expected software and/or firmware running on it.

Reference measurements are shared based on the CoRIM/CoMID model. More details are provided in the CoRIM section of this document.

This document adheres to the terminology used by the IETF Remote ATtestation ProcedureS (RATS) working group. Specifically, for networking products, NVIDIA acts as the Endorser for attested devices (Attesters) and also functions as a Reference Value Provider by supplying Golden Measurements. In doing so, NVIDIA facilitates the implementation of custom verifiers and supports various types of relying parties.

Specifications

CoRIM/CoMID

• TCG: DICE Endorsement Architecture for Devices

• IETF Draft: Concise Reference Integrity Manifest

CBOR

• IETF: RFC 8949 - CBOR (Concise Binary Object Representation)

• IETF: RFC 8152 - COSE (CBOR Object Signing and Encryption)

SPDM

• DMTF: DSP0274 - Security Protocol and Data Model (SPDM)