Kento Yoshida <email@example.com> writes:
Hello,I have a comment about packages in the proposal that depend on hardware
/ system features -
* Some packages in the proposal depend on special purpose hardware to
provide their functionality. e.g., TPM.
In systems, where TPM is not present (or similar functionality is
provided by alternate mechanisms), the TPM related packages will not
be useful. e.g., the non-x86 platforms in the CIP reference hardware
* Similarly, some packages require the system to be connected to the
In both of these situations, I am wondering what is the impact on
compliance? Is there a need to also define minimal set of hardware
features expected from reference hardware to be able to meet compliance
To help review the package list (and also discuss alternatives), it
would help to define the underlying functionality that is required in
more detail, e.g., secure key storage, verified boot, etc. It'll make it
possible review the proposal more concretely.