Paper Title: TCG DICE and SPDM Binding Update

Paper Abstract: This talk will provide a brief overview of the SPDM (Security Protocol and Data Model) standard, TCG DICE specification as well as provide an overview of the work being done based upon the SPDM and TCG DICE Binding specification. It will cover various use cases such as device onboarding, verification of authenticity of devices, verification of measurements, firmware and software updates, reprovision and remanufacturing of devices as well as decommissioning. This is important from the point of view of supply chain security This topic is interesting to organizations trying to implement SPDM protocol on DICE compliant devices. Further, it is also interesting for system integrators and platform vendors who intend to use SPDM compliant devices in their systems to ensure supply chain security.

Paper Author: Chandra Nelogal, Distinguished Member of Technical Staff, Trusted Computing Group

Author Bio: Chandra Nelogal works as a Distinguished Member of Technical Staff at Dell ISG (Infrastructure Solutions Group). His focus area of work covers data storage solutions, security covering aspects of data at rest security and device authentication. He participates in various industry standard orgs such as TCG (DICE and Storage Work Group), DMTF (PMCI and Security Task Force) and SNIA (Security TWG). Chandra is a prolific inventor with 47 granted patents and several patents pending.