[FOSDEM] Attestation Devroom CfP

Wed Oct 30 21:37:19 UTC 2024

We are very pleased to announce CfP for a brand new devroom named
attestation at FOSDEM 2025.

A web version of this CFP is available at:
https://hackmd.io/@po26cgI8T7u_FLuVujBdrQ/r1w2pK1-kl

# FOSDEM 2025 Attestation Devroom CfP

Remote attestation, as defined in [NIST IR 7904](
https://nvlpubs.nist.gov/nistpubs/ir/2015/NIST.IR.7904.pdf), is an
essential component of systems security for all classes of devices, from
small IoT devices to server platforms. It is increasingly being integrated
across the whole lifecycle of software, from packaging, to deployment, to
production use. Its role in providing transparency and authenticating
workloads and devices makes it particularly appealing, especially in
scenarios where existing authentication methods could benefit from more
robust assertions about the security status of endpoints.

## Formats
Options for presentation time (excluding discussion)
- 10 minutes
- 20 minutes
- 30 minutes

Each talk (irrespective of duration) will be allowed (at least) 5 minutes
for discussion.

## Desirable Topics

Topics of interest include, but are not limited to:

- Attestation and secure channel establishment
  - Attested TLS: pre-handshake attestation (e.g., Intel's RA-TLS,
Veraison, Attested Certificate Signing Request)
  - Attested TLS: intra-handshake attestation (e.g., TLS attest)
  - Attested TLS: post-handshake attestation (e.g., TLS exporters, exported
authenticators, post-handshake exchange)
  - Network protocols including attestation such as SPDM
  - Attestation at HTTP layer, such as HTTP attestable
  - Attestation over HTTP, such as Key Broker Service (KBS)
  - Attestation in other protocols
- Attestation and credential issuance
- Attestation and access control
- Attestation in IoT
- Attestation in complex systems
    - Composite attester (disaggregated RoT) representation
    - Secure device attachment
- REST APIs for attestation
- Attestation standardisation (formats, conveyance protocols)
- Attestation APIs/ABIs/frameworks in open-source OS
- Formal analysis of attestation protocols

## Important Dates

Submission open: 30th October 2024
Submission deadline: 1st December 2024
Acceptance notifications: 10th December 2024
Final schedule announcement: 15th December 2024
Devroom: 2nd February 2025, 9am-1pm

## Submission of Proposals

To submit a talk, please visit the [FOSDEM 2025 Pretalx website](
https://pretalx.fosdem.org/fosdem-2025/cfp). Please select "Attestation" as
the *track* and ensure you include all the requested information when
submitting a proposal. Please be descriptive, as the audience will have to
choose to attend your talk out of a listing with ~500 talks from other
projects at FOSDEM.

Please mention the talk duration (10/20/30 minutes) in the submission
notes.

## Code of Conduct

We'd like to remind all speakers and attendees that all of the
presentations and discussions in our devroom are held under the guidelines
set forth in the [FOSDEM Code of Conduct](
https://fosdem.org/2025/practical/conduct/) and we expect everyone
attending to follow it.

## Organizers
If you have any questions, feel free to reach out to us:

- Muhammad Usama Sardar (muhammad_usama.sardar at tu-dresden.de)
- Thomas Fossati (thomas.fossati at linaro.org)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.fosdem.org/pipermail/fosdem/attachments/20241030/f9aeb571/attachment.html>