Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/9elements/converged-security-suite

Converged Security Suite for Intel & AMD platform security features
https://github.com/9elements/converged-security-suite

bootguard calculate calculation cbnt firmware golang intel offline pcr0 prov reproduce security-tools tpm tpm2 trusted-computing txt

Last synced: 5 days ago
JSON representation

Converged Security Suite for Intel & AMD platform security features

Host: GitHub
URL: https://github.com/9elements/converged-security-suite
Owner: 9elements
License: bsd-3-clause
Created: 2019-02-26T14:28:24.000Z (over 5 years ago)
Default Branch: main
Last Pushed: 2024-04-02T07:31:27.000Z (7 months ago)
Last Synced: 2024-06-15T09:43:32.913Z (5 months ago)
Topics: bootguard, calculate, calculation, cbnt, firmware, golang, intel, offline, pcr0, prov, reproduce, security-tools, tpm, tpm2, trusted-computing, txt
Language: Go
Homepage: https://www.9esec.io
Size: 51.3 MB
Stars: 53
Watchers: 16
Forks: 13
Open Issues: 12
Metadata Files:
- Readme: README.md
- License: LICENSE
- Codeowners: CODEOWNERS

Awesome Lists containing this project

awesome-firmware-security - TXT Suite - The Intel TXT validation suite tests whether the platform supports Intel TXT and FIT and checks if the TPM boot chain has been configured correctly. (Tools / Open Source)

README

        
![image](assets/logo.png)

The Converged Security Suite implements all necessary tools for Intel platform security features.

| Technology | Testsuite | Provisioning |

| --- | --- | --- |

| Intel Trusted Execution Technology | Supported | Supported |

| Intel Trusted Execution Technology CBnT Extension | Missing | Supported |

| Intel Boot Guard 1.0 | Supported | Supported |

| Intel Boot Guard 2.0 | Supported | Supported |

| Intel Platform Firmware Resilience | N/A | Partly Supported |

Documentation

-------------

[Intel Manifest](https://www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/resources/key-usage-in-integrated-firmware-images.html)

Build Status

------------

![Build and Test](https://github.com/9elements/converged-security-suite/actions/workflows/build.yml/badge.svg)

Tooling & API

-------------

* [Intel TXT Test Suite](cmd/txt-suite) - Test Suite for Intel Trusted Execution Technology validation.

* [Intel TXT Provisioning](cmd/txt-prov) - Provisioning of Trusted Platform Module for Intel Trusted Execution Technology usage.

* [Intel BtG/CBnT Test Suite](cmd/bg-suite) - Test Suite for Intel Boot Guard validation.

* [Intel BtG/CBnT Provisioning](cmd/bg-prov) - Provisioning of all BootGuard versions and Trusted Execution Technology (CBnT) usage.

* [Intel/AMD pcr0tool](cmd/pcr0tool) - [PCR0](https://security.stackexchange.com/questions/127224/what-does-crtm-refer-to) diagnostics tool.

Developer notes

---------------

If you need to update a Boot Policy Manifest or a Key Manifest then please

read an

[instruction](https://github.com/linuxboot/fiano/blob/main/pkg/intel/metadata/README.md).

Funding

--------------





         





This project was partially funded through the [NGI Assure](https://nlnet.nl/assure) Fund, a fund established by [NLnet](https://nlnet.nl/) with financial support from the European Commission's [Next Generation Internet](https://ngi.eu/) programme, under the aegis of DG Communications Networks, Content and Technology under grant agreement No 957073.