Add the design document#1
Conversation
|
I think this looks like a great start. One thing I expected, but didn't spot (it might be included as part of the OCI spec) was the support for pulling images from authenticated registries via username:password / API key as I think that is one of the core features. |
Thanks for review, pulling images with authentication should be covered by OCI distribution spec:) |
fitzthum
left a comment
fitzthum
left a comment
There was a problem hiding this comment.
I made a few minor comments mainly about future things. I think the doc looks good.
| The `image-rs` crate supports both encrypted and unencrypted container images since | ||
| [Encrypted Container Image](https://github.com/opencontainers/artifacts/pull/15) | ||
| is mandatory for many confidential container usage scenarios. It also supports image signature verification to ensure | ||
| integrity. |
There was a problem hiding this comment.
There are some interesting policy questions here. I think from a security perspective we only want to support unencrypted containers that are verified, but should we really enforce this? How strict do we want to be and which entity should be in charge of setting the policy?
There was a problem hiding this comment.
That depends on the threaten model of confidential containers. It should be configurable which types of images are supported:
- encrypted with signature, mandatory
- encrypted without signature, mandatory
- unencrypted with signature, configurable and should be enabled
- unencrypted without signature, configurable and may be disabled.
There was a problem hiding this comment.
Yeah I think it's really just number 4 that we need to be very careful with. From a security perspective we shouldn't allow unencrypted and unsigned containers at all, but from a usability perspective those are exactly the container images that most people are probably using now.
There was a problem hiding this comment.
Keep in mind that this potentially applies not just to containers, but to the individual layers of a container. As in we will definitely want to support container images where some layers are encrypted and others aren't. If we verify the signature of the entire image this should be safe. I'm not sure if there is any reason to have per-layer signatures.
There was a problem hiding this comment.
Thanks @fitzthum , security policy part are updated, pls review.
|
|
||
| ### Non-Goals | ||
| * Image push, content discovery/management operations for remote registries | ||
| * Image encryption and signing |
There was a problem hiding this comment.
I agree that everything involving provisioning an image is a non-goal that would bloat image-rs but let's make sure that we provide good documentation about how a user can setup images using other tools. image-rs isn't very useful if people can't easily upload encrypted/signed images.
There was a problem hiding this comment.
So maybe a "Howto" doc helps here:)
There was a problem hiding this comment.
ooi, is it not in scope as there are already existing tools to encrypt+sign or is that we don't want to bloat the binary? If it's the latter, we can simply build two binaries from the same source (one to encrypt/sign the other to decrypt/check) to avoid any packaging bloat.
If this project supported encrypting/signing, that would make writing unit tests easier. But at an integration level, the CI should encrypt with other tooling too! ;)
There was a problem hiding this comment.
This project will leverage ocicrypt-rs to do decryption and image signing verification, and we may focuse integration test for compatiable with existing container build tools like skopeo
There was a problem hiding this comment.
We hope to focus on the most valuable features at the first stage:)
Let's get something usable then we could extend it on demand:)
There was a problem hiding this comment.
Yes, we added the document for generate test data in another PR which will describe how to do those steps, and will link them when related PR are merged.
How about this? |
| if needed. After image is unpacked, the image format module will handle | ||
| the format conversion between oci v1 and docker v2. |
There was a problem hiding this comment.
Is local caching relevant at all?
Or is it the case that after everything is decrypted and unpacked the original blobs will be destroyed?
There was a problem hiding this comment.
To be honest, we are not very clear about this yet:(
For most cases, we do not care about local caching. But not sure whether it will be needed for image data sharing.
There was a problem hiding this comment.
Caching might be good if you have more than one of the same container inside a pod. We definitely don't want to download a container more than once if it can be avoided.
There was a problem hiding this comment.
If caching is to be supported, is additional security needed for it? And how is it managed?
There was a problem hiding this comment.
We should support the case where an image is shared by multiple containers within a pod.
On the other handle, it's challenge to share container images among pods, even not support by current hardware yet.
So let's leave the hard part to the future.
There was a problem hiding this comment.
Yes, to be clear: We're talking about caching inside the guest.
There was a problem hiding this comment.
Yes, will add this info.
jodh-intel
left a comment
jodh-intel
left a comment
There was a problem hiding this comment.
Thanks @arronwy. A few comments...
| 1. encrypted with signature, mandatory | ||
| 2. encrypted without signature, mandatory | ||
| 3. unencrypted with signature, configurable and should be enabled | ||
| 4. unencrypted without signature, configurable and may be disabled |
There was a problem hiding this comment.
This might be quicker to understand if it was formatted as a table.
| Image type | Image Signature? | Layer encryption? | ... |
|---|---|---|---|
Also, is this scenario supported: a signed image that contains encrypted layers and unencrypted layers? (I think this should be stated clearly, maybe using the table above).
tbh, I'm wondering if we need an additional term since "encrypted image" doesn't specify if the image is signed. How about:
- secured image: a signed image with all its levels encrypted.
Other questions:
- What forms of signature are supported?
- What forms of encryption are supported?
- Can an image contain multiple encrypted layers where each layer uses a different encryption scheme?
- What happens if an image layer fails to decrypt? Presumably, it is "invalid", but this should be stated.
- What happens if a signing key is revoked or expired? Again, I think this should be stated explicitly.
- Shouldn't "the whole system" require secure NTP (NTS) to stop the possibility of the host changing its clock which could affect the ability (or the validity) of signature verification? Plus Secure DNS (DoH or DoT)?
There was a problem hiding this comment.
For image encryption opencontainers/artifacts#15 this PR describe the details on encrypted mediatype definitions for oci image spec.
For image signning, we still don't have detail definition yet, it is next step work for CC and upstream also have a POC: kata-containers/kata-containers#3023 and issue in attestation agent to support image signning verification: https://github.com/confidential-containers/attestation-agent/issues/24
|
|
||
| ### Non-Goals | ||
| * Image push, content discovery/management operations for remote registries | ||
| * Image encryption and signing |
There was a problem hiding this comment.
ooi, is it not in scope as there are already existing tools to encrypt+sign or is that we don't want to bloat the binary? If it's the latter, we can simply build two binaries from the same source (one to encrypt/sign the other to decrypt/check) to avoid any packaging bloat.
If this project supported encrypting/signing, that would make writing unit tests easier. But at an integration level, the CI should encrypt with other tooling too! ;)
| if needed. After image is unpacked, the image format module will handle | ||
| the format conversion between oci v1 and docker v2. |
There was a problem hiding this comment.
If caching is to be supported, is additional security needed for it? And how is it managed?
|
@arronwy gerry@linux.alibaba.com can this be closed as the initial design doc is already merged via #3 ? |
It's a different doc:) |
|
|
||
| ### Non-Goals | ||
| * Image push, content discovery/management operations for remote registries | ||
| * Image encryption and signing |
| if needed. After image is unpacked, the image format module will handle | ||
| the format conversion between oci v1 and docker v2. |
There was a problem hiding this comment.
Yes, to be clear: We're talking about caching inside the guest.
| After container image is downloaded, `image-rs` will talk with remote | ||
| attestation service to verify the image signature and decrypt the image | ||
| if needed. After image is unpacked, the image format module will handle | ||
| the format conversion between oci v1 and docker v2. |
There was a problem hiding this comment.
Why do we need to convert between oci v1 and docker v2?
Co-authored-by: Liu Jiang <gerry@linux.alibaba.com> Signed-off-by: Arron Wang <arron.wang@intel.com>
|
@fitzthum @jodh-intel Are you ok with that PR? |
Document: Add KBS attestation protocol design doc
1.A Crate that implements the Attestation Service core functionality.. Fixes: #1 Signed-off-by: zhouliang121 <liang.a.zhou@linux.alibaba.com>
When creating ephemeral storages, place the LUKS headers in guest memory rather than onto the storage device itself. For this, create LUKS header files in the CDH storage directory, and call into CryptInit::init_with_data_device instead of into CryptInit::init. The code path in which existing, encrypted storages are utilized remains untouched. Signed-off-by: Manuel Huber <manuelh@nvidia.com> to-squash: address comments confidential-containers#1 to-squash: address comments confidential-containers#2 to-squash: address comments confidential-containers#3
8 participants
Co-authored-by: Liu Jiang gerry@linux.alibaba.com
Signed-off-by: Arron Wang arron.wang@intel.com