Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://fosstodon.org/users/reproducible_builds/statuses/111902590378380096">Reproducible Builds (reproducible_builds@fosstodon.org)'s status on Saturday, 10-Feb-2024 02:21:04 JST</a><a href="https://fosstodon.org/@reproducible_builds" title="reproducible_builds@fosstodon.org"><img src="https://gnusocial.jp/avatar/10986-48-20240209172104.webp" width="48" height="48" alt="Reproducible Builds" style="position: absolute; left: 0; top: 0;">Reproducible Builds</a><div><a href="https://fosstodon.org/@reproducible_builds/111902570629523708" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/241546" title="katexochen@infosec.exchange">Paul Meyer</a></li></ul></div></section><article><p><a href="https://chaos.social/@malte">@malte</a> and <a href="https://infosec.exchange/@katexochen">@katexochen</a> presented "Reproducible builds for confidential computing: Why remote attestation is worthless without it" in the Confidential Computing devroom, covering the status quo of how reference values are used in CC. Based on a minimal open source example, they explained how they build fully reproducible OS images with mkosi and <a href="https://fosstodon.org/tags/NixOS" rel="tag">#NixOS</a> - all the way from source code in Git to the reference values for remote attestation.</p><p><a href="https://fosdem.org/2024/schedule/event/fosdem-2024-1769-reproducible-builds-for-confidential-computing-why-remote-attestation-is-worthless-without-it/" rel="nofollow noreferrer">https://fosdem.org/2024/schedule/event/fosdem-2024-1769-reproducible-builds-for-confidential-computing-why-remote-attestation-is-worthless-without-it/</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2697513#notice-5349858">In conversation</a><time datetime="2024-02-10T02:21:04+09:00" title="Saturday, 10-Feb-2024 02:21:04 JST">about a year ago</time> <span>from <span><a href="https://fosstodon.org/@reproducible_builds/111902590378380096" rel="external" title="Sent from fosstodon.org via ActivityPub">fosstodon.org</a></span></span><a href="https://fosstodon.org/@reproducible_builds/111902590378380096">permalink</a><h4>Attachments</h4><ol><li><label><a rel="external" href="https://gnusocial.jp/attachment/2237968">The title page for the talk, with the presenters in the corner.</a></label><br><a href="https://cdn.fosstodon.org/media_attachments/files/111/902/586/116/291/378/original/de211cc8a3a04f6a.png" rel="external">https://cdn.fosstodon.org/media_attachments/files/111/902/586/116/291/378/original/de211cc8a3a04f6a.png</a></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Reproducible Builds (reproducible_builds@fosstodon.org)'s status on Saturday, 10-Feb-2024 02:21:04 JSTReproducible Builds
in reply to
- malte :yayblob:
- Paul Meyer
@malte and @katexochen presented "Reproducible builds for confidential computing: Why remote attestation is worthless without it" in the Confidential Computing devroom, covering the status quo of how reference values are used in CC. Based on a minimal open source example, they explained how they build fully reproducible OS images with mkosi and #NixOS - all the way from source code in Git to the reference values for remote attestation.
https://fosdem.org/2024/schedule/event/fosdem-2024-1769-reproducible-builds-for-confidential-computing-why-remote-attestation-is-worthless-without-it/
In conversationabout a year ago from fosstodon.orgpermalink
Attachments
1. The title page for the talk, with the presenters in the corner.
  https://cdn.fosstodon.org/media_attachments/files/111/902/586/116/291/378/original/de211cc8a3a04f6a.png

Public

Embed Notice

HTML Code

Corresponding Notice