...
Our objective is to demonstrate the 5G SBP Use Case - Remote Attestation Use Case 1- IoT Device Security and Authentication, where SEDIMENT RA Verifier and an example Relying Party application are containerized and deployed with KubeArmor providing visibility and protection policies. Initially the result of attestation is used to control access to the an example Relying Party application. In the future, this may be replaced by a third party different application, or the attestation may be used to control network access through integration with the 5G ONAP AMF. The onboarding of the device to be attested is outside the purview of this use case, and a separate use case will address that concern.
...
Remote Attestation Topology
** XXX: integrate both diagrams into a single view **
...
Deployment Mode
SEDIMENT Deployment Mode
** XXX: discuss each of the three parties **
...
For initial testing, SEDIMENT project will prepare four Docker containers:
- SEDIMENT RA Verifier, to be protected using KubeArmor
- SEDIMENT RA Relying Party, to be protected using KubeArmor
- Example application server (to be updated to accept camera feeds from an attested device)
- A surrogate for the device to be attested (to be later replaced by an actual camera device with SEDIMENT prover)
KubeArmor Deployment Mode
...