Secure OTA Update

= Overview = A valid software update system on Linux should provide the following elements
 * Atomic updates
 * Stateless system
 * Capable of updating all software
 * bootloader
 * kernel
 * user data / configuration
 * rootfs / root file system
 * fail-safe, rollback to a previous software state
 * boot/update monitoring (watchdog) with boot confirmation
 * Secure download and verification of the image
 * Easy to use without vendor lock-in
 * Trusted
 * Compliant with and leverages HW elements (TPM/TEE)

= Storage and delivery methods =
 * Layered Tarball-based (i.e. docker)
 * File-based (i.e.libostree)
 * Chunk-based (i.e. casync)
 * Block-based (i.e. others)

= Todo =
 * Develop guidelines / reference implementations for key stories
 * Secure boot
 * Trusted execution environment (bootloader update, integrity checks)
 * Bootloader-driven rootfs image update process (image swap, boot count)
 * Boot firmware update process
 * Integration with different Open Source management servers
 * Secure software distribution (TUF) implementation
 * Watchdog best practices / boot image validation
 * Investigate cross-compatibility extensions in existing solutions
 * i.e. Mender support in SWUpdate?
 * casync (chunk-based image support in AGL

= Relevant conference presentations =
 * Uptane, Automotive-focused update framework
 * How we added software updates to AGL
 * OTA Updates in AGL using OSTree
 * Software over the air for AGL
 * TUF - The update framework
 * NCC security assessments: Kolide TUF Client, Docker Notary, osquery
 * When the going gets tough, get TUF going
 * 2017 ELC-E Europe BoF: How to collaborate on secure update for Linux

= Press releases =
 * Cloud Native Compute Foundation announces Notary and TUF specification adoption
 * Uptane: One of Popular Science's top 100 technologies of the year

= Reference implementations =
 * AGL has a meta-sota layer that is an implementation - agl-sota

= Actions = Actions:
 * Setup mailing list?
 * initial interest
 * Please add your email if you are interested at being involved at the collaboration efforts.
 * alan (at) opensourcefoundries.com
 * peter (at) korsgaard.com
 * ricardo (at) opensourcefoundries.com
 * anton (at) advancedtelematic.com