Red Hat Bugzilla – Bug 1466893
[Intel OSP13] Trusted Platform Module support for RSD platforms
Last modified: 2017-08-31 08:57:20 EDT
Description of feature:
TPM enhances the security of the platform by providing hardware based authentication and tamper detection.
The appropriate RedHat OS modules should be able to
• discover multiple HW and FW TPM versions
• compose/decompose RSD nodes with TPM HW.
• Change the state – enable or disable- of TPM- and clear TPM keys
Details of the TPM support should be available to OpenStack components through existing in-band mechanisms.
Version-Release number of selected component (if applicable):
OpenStack Ironic version (or others potentially) in OpenStack Queens release
2. Business Justification:
a) Why is this feature needed?
RSD is a new architecture that realizes an agile infrastructure where the hardware resources can be pooled according to application needs. It also enables a more easily scaled infrastructure, so CPU, memory, network and storage resources can be added as needed, without the need to do complete replacements of nodes
b) What hardware does this enable?
New platforms based on RSD architecture
c) Is this hardware on-board in a system (eg, LOM) or an add-on card?
RSD nodes are disaggregated (CPU, memory, storage, accelerators etc.)
d) Business impact? N/A
e) Other business drivers: N/A
3. Primary contact at Partner, email, phone (chat)
Priyank Durugkar - email@example.com
4. Expected results:
- DC admin lists available RSD resources, including TPM versions
- Admin composes an RSD node with appropriate TPM version