Draft NIST IR 8320 1 Hardware -Enabled Security: 2 Enabling a Layered Approach to Platform Security for Cloud 3 and Edge Computing Use Cases 4 5 Michael Bartock 6 Murugiah Souppaya 7 Ryan Savino 8 Tim Knoll 9 Uttam Shetty 10 Mourad Cherfaoui 11 Raghu Yeluri 12 Akash Malhotra 13 Karen Scarfone 14 15 16 17 18 This publication is available free of charge fro m: https://doi.org/10.6028/NIST.IR.8320-d raft 19 20 21 22 Draft NISTIR 8320 23 Hardware -Enabled Security: 24 Enabling a Layered Approach to Platform Security for Cloud 25 and Edge Computing Use Cases 26 Michael Bartock 27 Murugiah Souppaya 28 Computer Security Division 29 Information Technology Laboratory 30 31 Ryan Savino 32 Tim Knoll 33 Uttam Shetty 34 Mourad Cherfaoui 35 Raghu Yeluri 36 Intel Data Platforms Group 37 Santa Clara, CA 38 39 Akash Malhotra 40 AMD Product Security and Strategy Group 41 Austin, TX 42 43 Karen Scarfone 44 Scarfone Cybersecurity 45 Clifton, VA 46 47 48 49 May 2021 50 51 52 53 U.S. Department of Commerce 54 Gina Raimondo, Secretary 55 56 National Institute of Standards and Technology 57 James K. Olthoff, Performing the Non- Exclusive Functions and Duties of the Under Secretary of Commerce 58 for Standards and Technology & Director, National Institute of Standards and Technology 59 National Institute of Standards and Technology Interagency or Internal Report 8320 60 58 pages ( May 2021) 61 This publication is available free of charge from: 62 https://doi.org/10.6028/ NIST.IR.8320 -draft 63 Certain commercial entities, equipment, or materials may be identified in this document in order to describe an 64 experimental procedure or concept adequately. Such identification is not intended to imply recommendation or 65 endorsement by NIST, nor is it intended to imply that the entities, materials, or equipment are necessari ly the best 66 available for the purpose. 67 There may be references in this publication to other publications currently under development by NIST in accordance 68 with its assigned statutory responsibilities. The information in this publication, including concept s and methodologies, 69 may be used by f ederal agencies even before the completion of such companion publications. Thus, until each 70 publication is completed, current requirements, guideline s, and procedures, where they exist, remain operative. For 71 planning and transition purposes, f ederal agencies may wish to closely follow the development of these new 72 publications by NIST. 73 Organizations are encouraged to review all draft publications during public comment periods and provide feedback to 74 NIST. Many NIST cybersecurity publications , ot her than the ones noted above, are available at 75 https://csrc.nist.gov/publications . 76 Public comment period: May 27, 2021 through June 30, 2021 77 National Institute of Standards and Technology 78 Attn: Applied Cybersecurity Division, Information Technology Laboratory 79 100 Bureau Drive (Mail Stop 2000) Gaithersburg, MD 20899- 2000 80 Email: hwsec@ni st.gov 81 All comments are subject to release under the Freedom of Information Act (FOIA). 82 83 NISTIR 8320 (DRAFT ) HARDWARE -ENABLED SECURITY : ENABLING A LAYERED APPROACH TO PLATFORM SECURITY ii Reports on Computer Systems Technology 84 The Information Technology Laboratory (ITL) at the National Institute of Standards and 85 Technology (NIST) promotes the U.S. economy and public welfare by providing technical 86 leadership for the Nation’s measurement and standards infrastructure. ITL develops tests, test 87 methods, reference data, proof of concept implementations, and technical analyses to advance 88 the development and productive use of information technology. ITL’s responsibilities include the 89 development of management, administrative, technical, and physical standards and guidelines for 90 the cost -eff