Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/9elements/converged-security-suite
Converged Security Suite for Intel & AMD platform security features
https://github.com/9elements/converged-security-suite
bootguard calculate calculation cbnt firmware golang intel offline pcr0 prov reproduce security-tools tpm tpm2 trusted-computing txt
Last synced: about 1 month ago
JSON representation
Converged Security Suite for Intel & AMD platform security features
- Host: GitHub
- URL: https://github.com/9elements/converged-security-suite
- Owner: 9elements
- License: bsd-3-clause
- Created: 2019-02-26T14:28:24.000Z (almost 6 years ago)
- Default Branch: main
- Last Pushed: 2024-04-02T07:31:27.000Z (9 months ago)
- Last Synced: 2024-06-15T09:43:32.913Z (6 months ago)
- Topics: bootguard, calculate, calculation, cbnt, firmware, golang, intel, offline, pcr0, prov, reproduce, security-tools, tpm, tpm2, trusted-computing, txt
- Language: Go
- Homepage: https://www.9esec.io
- Size: 51.3 MB
- Stars: 53
- Watchers: 16
- Forks: 13
- Open Issues: 12
-
Metadata Files:
- Readme: README.md
- License: LICENSE
- Codeowners: CODEOWNERS
Awesome Lists containing this project
- awesome-firmware-security - TXT Suite - The Intel TXT validation suite tests whether the platform supports Intel TXT and FIT and checks if the TPM boot chain has been configured correctly. (Tools / Open Source)
README
![image](assets/logo.png)
The Converged Security Suite implements all necessary tools for Intel platform security features.
| Technology | Testsuite | Provisioning |
| --- | --- | --- |
| Intel Trusted Execution Technology | Supported | Supported |
| Intel Trusted Execution Technology CBnT Extension | Missing | Supported |
| Intel Boot Guard 1.0 | Supported | Supported |
| Intel Boot Guard 2.0 | Supported | Supported |
| Intel Platform Firmware Resilience | N/A | Partly Supported |Documentation
-------------
[Intel Manifest](https://www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/resources/key-usage-in-integrated-firmware-images.html)Build Status
------------
![Build and Test](https://github.com/9elements/converged-security-suite/actions/workflows/build.yml/badge.svg)Tooling & API
-------------* [Intel TXT Test Suite](cmd/txt-suite) - Test Suite for Intel Trusted Execution Technology validation.
* [Intel TXT Provisioning](cmd/txt-prov) - Provisioning of Trusted Platform Module for Intel Trusted Execution Technology usage.
* [Intel BtG/CBnT Test Suite](cmd/bg-suite) - Test Suite for Intel Boot Guard validation.
* [Intel BtG/CBnT Provisioning](cmd/bg-prov) - Provisioning of all BootGuard versions and Trusted Execution Technology (CBnT) usage.
* [Intel/AMD pcr0tool](cmd/pcr0tool) - [PCR0](https://security.stackexchange.com/questions/127224/what-does-crtm-refer-to) diagnostics tool.Developer notes
---------------If you need to update a Boot Policy Manifest or a Key Manifest then please
read an
[instruction](https://github.com/linuxboot/fiano/blob/main/pkg/intel/metadata/README.md).Funding
--------------
This project was partially funded through the [NGI Assure](https://nlnet.nl/assure) Fund, a fund established by [NLnet](https://nlnet.nl/) with financial support from the European Commission's [Next Generation Internet](https://ngi.eu/) programme, under the aegis of DG Communications Networks, Content and Technology under grant agreement No 957073.