CoVE-IO v0.2.0
The CoVE-IO v0.2.0 is a draft CoVE-IO specification release. The main changes compared to v0.1.0 are:
- Described and specified all TEE-IO flows: connection, disconnection, binding and unbinding flows . All of them are supported by the specified SBI.
- Completed the CoVE-IO security model.
- Aligned with the
Smmttand IOMMU RISC-V specifications. - Clarified and fixed multiple IDE and SPDM flows and requirements.
- Switched to the RISC-V specification template and layout.
What's Changed
- fix typos and missing Oxford commas by @kbroch-rivosinc in #49
- Touch up spelling and grammar by @steven-bellock in #50
- Fix a couple of misleading terms by @sameo in #65
- specification: Assign FIDs by @sameo in #66
- Correct term and URL for reference. by @jyao1 in #92
- fix typos by @jyao1 in #93
- clarify both usage by @jyao1 in #95
- specification: Fix security model typo by @sameo in #100
- Clarify TSM in security requirement. by @jyao1 in #96
- Add clarification for device firmware adversary by @jyao1 in #98
- Fix figure Device Connection - Secured SPDM Session by @jyao1 in #99
- Clarify page size 4KB. by @jyao1 in #94
- Clarify SPDM session requirement by @jyao1 in #101
- clarify the TVM confidential DMA scope. by @jyao1 in #102
- Remove M mode component from adversary. by @jyao1 in #97
- Add description for DDA mode by @jyao1 in #64
- specification: Clarify the IOMMU requirements by @sameo in #103
- specifications: Relax the PCIe accessible RoT requirement by @sameo in #105
- specification: Consistently use the supervisor domain manager term by @sameo in #106
- specifications: Architecture overview clarification by @sameo in #104
- specification: Make IDE key ownership model clearer by @sameo in #107
- add description for key update. by @jyao1 in #109
- specifications: Explicitly call out the unbinding flows by @sameo in #110
- specification: Expand the CoVE-IO arch diagram with another TSM by @sameo in #111
- riscv-ap-tee-io: Use the RVI specification repo template by @sameo in #116
- doc-resources update by @sameo in #117
- specification: Glossary fixes by @sameo in #115
- Complete mitigation section by @jyao1 in #112
- Makefile: Use the kroki service to generate diagrams by @sameo in #118
- specification: Define the interface unbinding flows by @sameo in #113
- specification: Clean up and fix contributors section by @sameo in #120
- specification: Define the device disconnection flow by @sameo in #119
- specification: Clear all ATC cache when unbinding a TDI by @sameo in #121
- CoVE-IO v0.2.0 by @sameo in #122
New Contributors
- @kbroch-rivosinc made their first contribution in #49
- @steven-bellock made their first contribution in #50
Full Changelog: v0.1.0...v0.2.0
Contributors
sameo, steven-bellock, and 2 other contributors