NVIDIA Device Attestation and CoRIM-based Reference Measurement Sharing v2.0

Introduction

Device attestation based on SPDM standard and OCP guidelines is introduced in NVIDIA® BlueField®-3, and NVIDIA® ConnectX®-7 using SPDM v1.1.

Attestation is a mechanism in which a host/platform automatically verifies the authenticity and integrity of the hardware and software state of a device. The mechanism is based on a hardware RoT and utilizes SPDM messages that handle the attestation, measurement collection, and trust between device and platform BMC or platform RoT (usually host BMC). This provides the added value of increased security and assurance that the host/platform of device is not being tampered with and has the proper software running on it.

Measurements are shared based on the CoRIM/CoMID model. More details are provided further down in the document.

This document adheres to the terminology used by the IETF Remote ATtestation ProcedureS (RATS) working group. Specifically, for networking products, NVIDIA acts as the Endorser for attested devices (Attesters) and also functions as a Reference Value Provider by supplying Golden Measurements. In doing so, NVIDIA facilitates the implementation of custom verifiers and supports various types of relying parties.

Specifications

CoRIM/CoMID

• TCG: DICE Endorsement Architecture for Devices

• IETF Draft: Concise Reference Integrity Manifest

CBOR

• IETF: RFC 8949 - CBOR (Concise Binary Object Representation)

• IETF: RFC 8152 - COSE (CBOR Object Signing and Encryption)

SPDM

• DMTF: DSP0274 - Security Protocol and Data Model (SPDM)