Skip to content
This repository has been archived by the owner on Nov 28, 2023. It is now read-only.

Releases: secure-device-onboard/release

v1.10.0

11 Dec 08:09
@bprashan bprashan
v1.10.0
429d13f
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.10.0

New features

all-in-one-demo, client-sdk, iot-platform-sdk, pri, rendezvous-service, supply-chain-tools: The primary supported OS has been moved from Ubuntu 18.04 to Ubuntu 20.04.
all-in-one-demo: Implemented REST endpoint to get additional information (serial number, UUID, timestamp for Device Initialization) about device.
all-in-one-demo: Added new unit-tests, improved exception handling and updated input validation.
rendezvous-service: The use of whitelist/blacklist is deprecated in favour of allowlist/denylist.

Changes to existing features

iot-platform-sdk, pri, rendezvous-service: Added check for known AppID to ensure only known TEE based clients can be used to onboard a device.

Discontinued features

None

Fixed Issues

client-sdk: TPM2 TSS Engine version has been updated to 1.1.0 to fix build issue.
client-sdk: Fixed build issue when MODULES=true option was selected. It was only observed on Ubuntu 20.04.
iot-platform-sdk, pri: HTTP version was forced to 1.1 to fix access issue with Sandbox RV while executing in open network.
rendezvous-service: Enhanced logic to parse proxy information from environment variable. This information is used by the Docker scripts during runtime execution.
supply-chain-tools: Fixed the incorrect UUID value in the database against ownership voucher entry.

Known Issues

None

Supported hardware platforms

client-sdk:
X86 (source and binary)
ARM-SE, ARM M4, ARM A7 (source only)

Documentation

https://secure-device-onboard.github.io/docs/

Please ignore Source code zip/tar.gz files. These are default artifacts generated during GitHub Release process.

Assets 9
Loading

v1.9.0

04 Sep 18:56
@bprashan bprashan
v1.9.0
0178593
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.9.0

New features

all-in-one-demo: ‘rendezvous-service’ is integrated with this demo.
client-sdk: Build system is updated to use cmake*.
client-sdk: Unit-tests are added.
client-sdk: A guide has been provided to port client-sdk to new platforms.
iot-platform-sdk: On-Die ECDSA device attestation support is added.
iot-platform-sdk: Resale protocol support is added in OCS-OPS REST contracts.
pri: On-Die ECDSA device attestation support is added.
rendezvous-service: The build system is migrated to use Maven* and the code is built using Java* 11. The binary packaging has been changed to WAR format.
rendezvous-service: On-Die ECDSA device attestation support is added.
supply-chain-tools: On-Die ECDSA device attestation support is added.

Changes to existing features

iot-platform-sdk: Application properties are moved to Docker* .env files.
iot-platform-sdk: Guidelines have been added for updating ServiceInfo configuration files in iot-platform-sdk. Not following the guidelines might result in failure to onboard the device.
rendezvous-service: The hashes for the test keys are auto-populated into the allow-list in example Redis DB Docker instance.
supply-chain-tools: Application properties are moved to Docker* .env files.
supply-chain-tools: Owner public keys (RSA2048, ECDSA P-256 and ECDSA P-384) are grouped together. During Ownership Voucher extension, appropriate public key is picked up based on the type of Manufacturer key.

Discontinued features

client-sdk: EPID support was removed.

Fixed Issues

None

Known Issues

pri: A problem was discovered after release in which the PRI TO0Client and Device implementations are not able to complete TO0/TO1 operations against hosted Rendezvous service if they were executed in an open network (not behind a proxy). See this Github issue for details. This issue will be fixed in SDO 1.9.1.
iot-platform-sdk: The HTTP client implementation in the IOT platform SDK was updated in release 1.9 to match the implementation in PRI. Because of this change, the issue reported above also impacts the IOT Platform SDK in release 1.9, but doesn’t affect it in release 1.8. This issue will be fixed in SDO 1.9.1.
client-sdk: A problem was discovered after release in which the link to the TPM2_TSS_ENGINE component used by the Client SDK to build with TPM support no longer exists. See this Github issue for details. This issue will be fixed in SDO 1.9.1.

Supported hardware platforms

client-sdk:
X86 (source and binary)
ARM-SE, ARM M4, ARM A7 (source only)

Documentation

https://secure-device-onboard.github.io/docs/

Please ignore Source code zip/tar.gz files. These are default artifacts generated during GitHub Release process.

Assets 9
Loading

v1.8.0

30 Apr 07:08
@bprashan bprashan
v1.8.0
0178593
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.8.0

New features

all-in-one-demo: The demo component was added to facilitate faster demonstration of SDO protocol
using different client implementations.
client-sdk: An example service-info module (sys_info) was added.
pri: CBOR encoding/decoding library is added for future protocol (in 'protocol-next' branch).
pri: Example scripts are added to demonstrate protocol execution.
rendezvous-service: Example docker scripts are added for deployment of service.
supply-chain-tools: Example docker scripts are added for deployment of services.

Changes to existing features

client-sdk: Several security fixes has been incorporated.
client-sdk: Linux naming convention has been used for variable and function names.
client-sdk: 'Resale' feature is now supported.
iot-platform-sdk: The Owner Redirect information is configurable during run-time.
pri: OwnershipTransferClient accepts configurable number of retries.
pri: Timeout for serviceinfo script execution has been increased in Device module.
supply-chain-tools: UUID field is added to Ownership Voucher table.

Discontinued features

cri: The repository has been renamed as 'pri'.

Fixed Issues

client-sdk: Fixed network discovery issue with WPAD.
iot-platform-sdk: Fixed mTLS connection failure to enable execution against latest JDK version.

Known Issues

pri: A problem was discovered after release in which the PRI TO0Client and Device implementations are not able to complete TO0/TO1 operations against hosted Rendezvous service if they were executed in an open network (not behind a proxy). See this Github issue for details. This issue will be fixed in SDO 1.8.1.
client-sdk: A problem was discovered after release in which the link to the TPM2_TSS_ENGINE component used by the Client SDK to build with TPM support no longer exists. See this Github issue for details. This issue will be fixed in SDO 1.8.1.

Supported hardware platforms

client-sdk: X86, ARM-SE (source only)

Documentation

https://secure-device-onboard.github.io/docs/

Please ignore Source code zip/tar.gz files. These are default artifacts generated during GitHub Release process.

Assets 9
Loading