U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

NIST IR 8320 (Initial Public Draft)

Hardware-Enabled Security: Enabling a Layered Approach to Platform Security for Cloud and Edge Computing Use Cases

Date Published: May 2021
Comments Due: June 30, 2021 (public comment period is CLOSED)
Email Questions to: hwsec@nist.gov

Author(s)

Michael Bartock (NIST), Murugiah Souppaya (NIST), Ryan Savino (Intel), Timothy Knoll (Intel), Uttam Shetty (Intel), Mourad Cherfaoui (Intel), Raghuram Yeluri (Intel), Akash Malhotra (AMD), Karen Scarfone (Scarfone Cybersecurity)

Announcement

Draft NIST IR 8320 replaces the draft cybersecurity white paper, Hardware-Enabled Security for Server Platforms, which was released in April 2020.
 
The foundation of any data center or edge computing security strategy should be securing the platform on which data and workloads will be executed and accessed. The physical platform represents the first layer for any layered security approach and provides the initial protections to help ensure that higher-layer security controls can be trusted. This report explains hardware-enabled security techniques and technologies that can improve platform security and data protection for cloud data centers and edge computing. It will provide the foundation for a series of NIST IRs on hardware-enabled security techniques and technologies, such as draft NIST IR 8320A, Hardware-Enabled Security: Container Platform Security Prototype.

Abstract

Keywords

confidential computing; container; hardware-enabled security; hardware security module (HSM); secure enclave; trusted execution environment (TEE); trusted platform module (TPM); virtualization
Control Families

None selected

Documentation

Publication:
https://doi.org/10.6028/NIST.IR.8320-draft
Download URL

Supplemental Material:
Submit comments

Other Parts of this Publication:
IR 8320A

Document History:
04/28/20: CSWP 14 (Draft)
05/27/21: IR 8320 (Draft)
10/27/21: IR 8320 (Draft)
05/04/22: IR 8320 (Final)

Topics

Security and Privacy

roots of trust

Technologies

cloud & virtualization, hardware