Cloned from launchpad blueprint https://blueprints.launchpad.net/nova/+spec/nova-trusted-geo-asset-tag.
One of the key requirements for certain workloads moving from cloud servers from one location to another have to meet certain laws for data security, privacy, and other aspects of compliance. Determining the approximate physical location of a computing device, such as a cloud computing server, can be accomplished in many ways with traditional methods secured through operational controls and therefore cannot be trusted to meet cloud security needs.
The use case is to establish an automated hardware root of trust method for enforcing and monitoring geo location or boundary restrictions for cloud servers . A hardware root of trust is an inherently trusted combination of hardware and firmware that maintains the integrity of the platform and the asset/geo tag information that is stored in tamper-resistant hardware. This information is accessed by Cloud management and security tools using secure protocols to assert the integrity of the platform and Asset/Geo tag information of the computing device
Specification URL (additional information):