Bug 1466893 - [Intel OSP13] Trusted Platform Module support for RSD platforms
[Intel OSP13] Trusted Platform Module support for RSD platforms
Status: NEW
Product: Red Hat OpenStack
Classification: Red Hat
Component: openstack-ironic (Show other bugs)
13.0 (Queens)
x86_64 Linux
unspecified Severity high
: ---
: ---
Assigned To: RHOS Maint
mlammon
: FutureFeature
Depends On:
Blocks: epic-rsd 1419948 1422243
  Show dependency treegraph
 
Reported: 2017-06-30 12:57 EDT by Krish Raghuram
Modified: 2017-08-31 08:57 EDT (History)
10 users (show)

See Also:
Fixed In Version:
Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed:
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)

  None (edit)
Description Krish Raghuram 2017-06-30 12:57:47 EDT
Description of feature:
TPM enhances the security of the platform by providing hardware based authentication and tamper detection. 
The appropriate RedHat OS modules should be able to
•	discover multiple HW and FW TPM versions 
•	compose/decompose RSD nodes with TPM HW.
•	Change the state – enable or disable- of TPM- and clear TPM keys 
Details of the TPM support should be available to OpenStack components through existing in-band mechanisms.

Version-Release number of selected component (if applicable):
OpenStack Ironic version (or others potentially) in OpenStack Queens release

2. Business Justification:
  a) Why is this feature needed?
     RSD is a new architecture that realizes an agile infrastructure where the hardware resources can be pooled according to application needs. It also enables a more easily scaled infrastructure, so CPU, memory, network and storage resources can be added as needed, without the need to do complete replacements of nodes
  b) What hardware does this enable?
   New platforms based on RSD architecture
  c) Is this hardware on-board in a system (eg, LOM) or an add-on card? 
  RSD nodes are disaggregated (CPU, memory, storage, accelerators etc.)
  d) Business impact? N/A
  
  e) Other business drivers: N/A

3. Primary contact at Partner, email, phone (chat)
   Priyank Durugkar - priyank.durugkar@intel.com

4. Expected results:
- DC admin lists available RSD resources, including TPM versions
- Admin composes an RSD node with appropriate TPM version

Additional info:

Note You need to log in before you can comment on or make changes to this bug.