Ed Tanous | 23203b4 | 2023-03-16 16:58:46 -0700 | [diff] [blame] | 1 | <?xml version="1.0" encoding="UTF-8"?> |
| 2 | <!----> |
| 3 | <!--################################################################################ --> |
Gunnar Mills | 2ae81db | 2024-01-31 14:25:11 -0600 | [diff] [blame] | 4 | <!--# Redfish Schema: ComponentIntegrity v1.2.2 --> |
Ed Tanous | 23203b4 | 2023-03-16 16:58:46 -0700 | [diff] [blame] | 5 | <!--# --> |
| 6 | <!--# For a detailed change log, see the README file contained in the DSP8010 bundle, --> |
| 7 | <!--# available at http://www.dmtf.org/standards/redfish --> |
Ed Tanous | f263e09 | 2023-05-22 09:56:29 -0700 | [diff] [blame] | 8 | <!--# Copyright 2014-2023 DMTF. --> |
Ed Tanous | 23203b4 | 2023-03-16 16:58:46 -0700 | [diff] [blame] | 9 | <!--# For the full DMTF copyright policy, see http://www.dmtf.org/about/policies/copyright --> |
| 10 | <!--################################################################################ --> |
| 11 | <!----> |
| 12 | <edmx:Edmx xmlns:edmx="http://docs.oasis-open.org/odata/ns/edmx" Version="4.0"> |
| 13 | |
| 14 | <edmx:Reference Uri="http://docs.oasis-open.org/odata/odata/v4.0/errata03/csd01/complete/vocabularies/Org.OData.Core.V1.xml"> |
| 15 | <edmx:Include Namespace="Org.OData.Core.V1" Alias="OData"/> |
| 16 | </edmx:Reference> |
| 17 | <edmx:Reference Uri="http://docs.oasis-open.org/odata/odata/v4.0/errata03/csd01/complete/vocabularies/Org.OData.Capabilities.V1.xml"> |
| 18 | <edmx:Include Namespace="Org.OData.Capabilities.V1" Alias="Capabilities"/> |
| 19 | </edmx:Reference> |
| 20 | <edmx:Reference Uri="http://redfish.dmtf.org/schemas/v1/RedfishExtensions_v1.xml"> |
| 21 | <edmx:Include Namespace="Validation.v1_0_0" Alias="Validation"/> |
| 22 | <edmx:Include Namespace="RedfishExtensions.v1_0_0" Alias="Redfish"/> |
| 23 | </edmx:Reference> |
| 24 | <edmx:Reference Uri="http://redfish.dmtf.org/schemas/v1/Resource_v1.xml"> |
| 25 | <edmx:Include Namespace="Resource"/> |
| 26 | <edmx:Include Namespace="Resource.v1_0_0"/> |
| 27 | </edmx:Reference> |
| 28 | <edmx:Reference Uri="http://redfish.dmtf.org/schemas/v1/Certificate_v1.xml"> |
| 29 | <edmx:Include Namespace="Certificate"/> |
| 30 | </edmx:Reference> |
| 31 | |
| 32 | <edmx:DataServices> |
| 33 | |
| 34 | <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="ComponentIntegrity"> |
| 35 | <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| 36 | |
| 37 | <EntityType Name="ComponentIntegrity" BaseType="Resource.v1_0_0.Resource" Abstract="true"> |
| 38 | <Annotation Term="OData.Description" String="The ComponentIntegrity resource provides critical and pertinent security information about a specific device, system, software element, or other managed entity."/> |
| 39 | <Annotation Term="OData.LongDescription" String="This resource shall represent critical and pertinent security information about a specific device, system, software element, or other managed entity."/> |
| 40 | <Annotation Term="Capabilities.InsertRestrictions"> |
| 41 | <Record> |
| 42 | <PropertyValue Property="Insertable" Bool="false"/> |
| 43 | </Record> |
| 44 | </Annotation> |
| 45 | <Annotation Term="Capabilities.UpdateRestrictions"> |
| 46 | <Record> |
| 47 | <PropertyValue Property="Updatable" Bool="true"/> |
| 48 | </Record> |
| 49 | </Annotation> |
| 50 | <Annotation Term="Capabilities.DeleteRestrictions"> |
| 51 | <Record> |
| 52 | <PropertyValue Property="Deletable" Bool="false"/> |
| 53 | </Record> |
| 54 | </Annotation> |
| 55 | <Annotation Term="Redfish.Uris"> |
| 56 | <Collection> |
| 57 | <String>/redfish/v1/ComponentIntegrity/{ComponentIntegrityId}</String> |
| 58 | </Collection> |
| 59 | </Annotation> |
| 60 | </EntityType> |
| 61 | |
| 62 | <Action Name="SPDMGetSignedMeasurements" IsBound="true"> |
| 63 | <Annotation Term="OData.Description" String="This action generates an SPDM cryptographic signed statement over the given nonce and measurements of the SPDM Responder."/> |
| 64 | <Annotation Term="OData.LongDescription" String="This action shall generate a cryptographic signed statement over the given nonce and measurements corresponding to the SPDM Responder. This action shall not be present if the ComponentIntegrityType property does not contain the value `SPDM`. The SPDM Requester shall issue one or more SPDM 'GET_MEASUREMENTS' requests for each of the requested measurement indices to the SPDM Responder. When the SPDM 'GET_MEASUREMENTS' requests are made for version 1.2, the parameter 'RawBitStreamRequested' shall contain `0`. The SPDM Requester shall provide the nonce for the action to the SPDM Responder in the last SPDM 'GET_MEASUREMENTS' request. The SPDM Requester shall request a signature in the last SPDM 'GET_MEASUREMENTS' request."/> |
| 65 | <Parameter Name="ComponentIntegrity" Type="ComponentIntegrity.v1_0_0.Actions"/> |
| 66 | <Parameter Name="Nonce" Type="Edm.String"> |
| 67 | <Annotation Term="OData.Description" String="A 32-byte hex-encoded string that is signed with the measurements. The value should be unique."/> |
| 68 | <Annotation Term="OData.LongDescription" String="This parameter shall contain a 32-byte hex-encoded string that is signed with the measurements. If not provided by the client, the SPDM Requester shall generate the nonce. The value should be unique and generated using a random or a pseudo-random generator. The SPDM Requester shall send this value to the SPDM Responder in the SPDM 'GET_MEASUREMENTS' request."/> |
| 69 | <Annotation Term="Validation.Pattern" String="^[0-9a-fA-F]{64}$"/> |
| 70 | </Parameter> |
| 71 | <Parameter Name="SlotId" Type="Edm.Int64"> |
| 72 | <Annotation Term="OData.Description" String="The slot identifier for the certificate containing the private key to generate the signature over the measurements."/> |
| 73 | <Annotation Term="OData.LongDescription" String="This parameter shall contain the SPDM slot identifier for the certificate containing the private key to generate the signature over the measurements. If not provided by the client, the value shall be assumed to be `0`. The SPDM Requester shall send this value to the SPDM Responder in the SPDM 'GET_MEASUREMENTS' request."/> |
| 74 | </Parameter> |
| 75 | <Parameter Name="MeasurementIndices" Type="Collection(Edm.Int64)"> |
| 76 | <Annotation Term="OData.Description" String="An array of indices that identify the measurement blocks to sign."/> |
| 77 | <Annotation Term="OData.LongDescription" String="This parameter shall contain an array of indices that identify the measurement blocks to sign. This array shall contain one or more unique values between `0` to `254`, inclusive, or contain a single value of `255`. If not provided by the client, the value shall be assumed to be an array containing a single value of `255`."/> |
| 78 | </Parameter> |
| 79 | <ReturnType Type="ComponentIntegrity.v1_0_0.SPDMGetSignedMeasurementsResponse" Nullable="false"/> |
| 80 | </Action> |
| 81 | |
| 82 | <Action Name="TPMGetSignedMeasurements" IsBound="true"> |
| 83 | <Annotation Term="OData.Description" String="This action generates a TPM cryptographic signed statement over the given nonce and PCRs of the TPM for TPM 2.0 devices."/> |
| 84 | <Annotation Term="OData.LongDescription" String="This action shall generate a cryptographic signed statement over the given nonce and PCRs of the TPM for TPM 2.0 devices. This action shall not be present if the ComponentIntegrityType property does not contain the value `TPM`."/> |
| 85 | <Parameter Name="ComponentIntegrity" Type="ComponentIntegrity.v1_0_0.Actions"/> |
| 86 | <Parameter Name="Nonce" Type="Edm.String"> |
| 87 | <Annotation Term="OData.Description" String="A set of bytes as a hex-encoded string that is signed with the measurements. The value should be unique."/> |
| 88 | <Annotation Term="OData.LongDescription" String="This parameter shall contain a set of bytes as a hex-encoded string that is signed with the measurements. Services shall reject the action request if the number of bytes provided is larger than the value specified by the NonceSizeBytesMaximum property in the TPM property. If not provided by the client, the service shall generate the nonce. The value should be unique and generated using a random or a pseudo-random generator. The service shall send this value to the TPM in the 'qualifyingData' parameter of the 'TPM2_Quote' command defined in the Trusted Platform Module Library Specification."/> |
| 89 | <Annotation Term="Validation.Pattern" String="^[0-9a-fA-F]$"/> |
| 90 | </Parameter> |
| 91 | <Parameter Name="Certificate" Type="Certificate.Certificate" Nullable="false"> |
| 92 | <Annotation Term="OData.Description" String="The URI for the certificate that represents the TPM attestation key."/> |
| 93 | <Annotation Term="OData.LongDescription" String="This parameter shall contain the reference to the certificate installed on the TPM that represents the TPM's attestation key for the 'signHandle' parameter of the 'TPM2_Quote' command defined in the Trusted Platform Module Library Specification."/> |
| 94 | </Parameter> |
| 95 | <Parameter Name="Scheme" Type="Edm.String" Nullable="false"> |
| 96 | <Annotation Term="OData.Description" String="The signing scheme to use for the TPM attestation key."/> |
| 97 | <Annotation Term="OData.LongDescription" String="This parameter shall contain the Base64-encoded representation of the 'TPMT_SIG_SCHEME' object, as defined in the Trusted Platform Module Library Specification, that identifies the signing scheme to use for the TPM attestation key. The service shall send this value to the TPM in the 'inScheme' parameter of the 'TPM2_Quote' command defined in the Trusted Platform Module Library Specification."/> |
| 98 | </Parameter> |
| 99 | <Parameter Name="PCRSelection" Type="Edm.String" Nullable="false"> |
Gunnar Mills | 2ae81db | 2024-01-31 14:25:11 -0600 | [diff] [blame] | 100 | <Annotation Term="OData.Description" String="An object that identifies the PCRs to sign."/> |
Ed Tanous | 23203b4 | 2023-03-16 16:58:46 -0700 | [diff] [blame] | 101 | <Annotation Term="OData.LongDescription" String="This parameter shall contain the Base64-encoded representation of the 'TPML_PCR_SELECTION' object, as defined by the Trusted Platform Module Library Specification, that identifies the PCRs to sign. The service shall send this value to the TPM in the 'PCRselect' parameter of the 'TPM2_Quote' command defined in the Trusted Platform Module Library Specification."/> |
| 102 | </Parameter> |
| 103 | <ReturnType Type="ComponentIntegrity.v1_2_0.TPMGetSignedMeasurementsResponse" Nullable="false"/> |
| 104 | <Annotation Term="Redfish.Revisions"> |
| 105 | <Collection> |
| 106 | <Record> |
| 107 | <PropertyValue Property="Kind" EnumMember="Redfish.RevisionKind/Added"/> |
| 108 | <PropertyValue Property="Version" String="v1_2_0"/> |
| 109 | </Record> |
| 110 | </Collection> |
| 111 | </Annotation> |
| 112 | </Action> |
| 113 | </Schema> |
| 114 | |
| 115 | <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="ComponentIntegrity.v1_0_0"> |
| 116 | <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| 117 | <Annotation Term="Redfish.Release" String="2021.4"/> |
| 118 | |
| 119 | <EntityType Name="ComponentIntegrity" BaseType="ComponentIntegrity.ComponentIntegrity"> |
| 120 | <Property Name="Actions" Type="ComponentIntegrity.v1_0_0.Actions" Nullable="false"> |
| 121 | <Annotation Term="OData.Description" String="The available actions for this resource."/> |
| 122 | <Annotation Term="OData.LongDescription" String="This property shall contain the available actions for this resource."/> |
| 123 | </Property> |
| 124 | <Property Name="Status" Type="Resource.Status" Nullable="false"> |
| 125 | <Annotation Term="OData.Description" String="The status and health of the resource and its subordinate or dependent resources."/> |
| 126 | <Annotation Term="OData.LongDescription" String="This property shall contain any status or health properties of the resource."/> |
| 127 | </Property> |
| 128 | <Property Name="ComponentIntegrityType" Type="ComponentIntegrity.v1_0_0.ComponentIntegrityType" Nullable="false"> |
| 129 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 130 | <Annotation Term="OData.Description" String="The type of security technology for the component."/> |
| 131 | <Annotation Term="OData.LongDescription" String="This value of this property shall contain the underlying security technology providing integrity information for the component."/> |
| 132 | <Annotation Term="Redfish.Required"/> |
| 133 | </Property> |
| 134 | <Property Name="ComponentIntegrityTypeVersion" Type="Edm.String" Nullable="false"> |
| 135 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 136 | <Annotation Term="OData.Description" String="The version of the security technology."/> |
Gunnar Mills | 2ae81db | 2024-01-31 14:25:11 -0600 | [diff] [blame] | 137 | <Annotation Term="OData.LongDescription" String="This value of this property shall contain the version of the security technology indicated by the ComponentIntegrityType property. If the service has not established secure communication with the device or if security protocols are disabled, this property shall contain an empty string. If ComponentIntegrityType contains `SPDM`, this property shall contain the negotiated or selected SPDM protocol and shall follow the regular expression pattern `^\d+\.\d+\.\d+$`. If ComponentIntegrityType contains `TPM`, this property shall contain the version of the TPM."/> |
Ed Tanous | 23203b4 | 2023-03-16 16:58:46 -0700 | [diff] [blame] | 138 | <Annotation Term="Redfish.Required"/> |
| 139 | </Property> |
| 140 | <Property Name="ComponentIntegrityEnabled" Type="Edm.Boolean" Nullable="false"> |
| 141 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/ReadWrite"/> |
| 142 | <Annotation Term="OData.Description" String="An indication of whether security protocols are enabled for the component."/> |
| 143 | <Annotation Term="OData.LongDescription" String="This property shall indicate whether security protocols are enabled for the component. If ComponentIntegrityType contains `SPDM`, a value of `false` shall prohibit the SPDM Requester from using SPDM to communicate with the component identified by the TargetComponentURI property. If ComponentIntegrityType contains `TPM`, a value of `false` shall disable the TPM component identified by the TargetComponentURI property entirely. If `false`, services shall not provide the TPM and SPDM properties in response payloads for this resource. If `false`, services shall reject action requests to this resource. If `true`, services shall allow security protocols with the component identified by the TargetComponentURI property."/> |
| 144 | </Property> |
| 145 | <Property Name="TargetComponentURI" Type="Edm.String" Nullable="false"> |
| 146 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
Gunnar Mills | 2ae81db | 2024-01-31 14:25:11 -0600 | [diff] [blame] | 147 | <Annotation Term="OData.Description" String="The link to the component whose integrity that this resource reports."/> |
Ed Tanous | 23203b4 | 2023-03-16 16:58:46 -0700 | [diff] [blame] | 148 | <Annotation Term="OData.LongDescription" String="This value of this property shall contain a link to the resource whose integrity information is reported in this resource. If ComponentIntegrityType contains `SPDM`, this property shall contain a URI to the resource that represents the SPDM Responder. If ComponentIntegrityType contains `TPM`, this property shall contain a URI with RFC6901-defined JSON fragment notation to a member of the TrustedModules array in a ComputerSystem resource that represents the TPM or a resource of type TrustedComponent that represents the TPM."/> |
| 149 | <Annotation Term="Redfish.Required"/> |
Gunnar Mills | 2ae81db | 2024-01-31 14:25:11 -0600 | [diff] [blame] | 150 | <Annotation Term="OData.IsURL"/> |
Ed Tanous | 23203b4 | 2023-03-16 16:58:46 -0700 | [diff] [blame] | 151 | </Property> |
| 152 | <Property Name="Links" Type="ComponentIntegrity.v1_0_0.Links" Nullable="false"> |
| 153 | <Annotation Term="OData.Description" String="The links to other resources that are related to this resource."/> |
| 154 | <Annotation Term="OData.LongDescription" String="This property shall contain links to resources that are related to but are not contained by, or subordinate to, this resource."/> |
| 155 | </Property> |
| 156 | <Property Name="LastUpdated" Type="Edm.DateTimeOffset"> |
| 157 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 158 | <Annotation Term="OData.Description" String="The date and time when information for the component was last updated."/> |
| 159 | <Annotation Term="OData.LongDescription" String="This property shall contain the date and time when information for the component was last updated."/> |
| 160 | </Property> |
| 161 | <Property Name="SPDM" Type="ComponentIntegrity.v1_0_0.SPDMinfo" Nullable="false"> |
| 162 | <Annotation Term="OData.Description" String="Integrity information about the SPDM Responder as reported by an SPDM Requester."/> |
Gunnar Mills | 2ae81db | 2024-01-31 14:25:11 -0600 | [diff] [blame] | 163 | <Annotation Term="OData.LongDescription" String="This property shall contain integrity information about the SPDM Responder identified by the TargetComponentURI property as reported by an SPDM Requester. This property shall be present if ComponentIntegrityType contains `SPDM` and if `ComponentIntegrityEnabled` contains `true`. For other cases, this property shall be absent."/> |
Ed Tanous | 23203b4 | 2023-03-16 16:58:46 -0700 | [diff] [blame] | 164 | </Property> |
| 165 | <Property Name="TPM" Type="ComponentIntegrity.v1_0_0.TPMinfo" Nullable="false"> |
| 166 | <Annotation Term="OData.Description" String="Integrity information about the Trusted Platform Module (TPM)."/> |
Gunnar Mills | 2ae81db | 2024-01-31 14:25:11 -0600 | [diff] [blame] | 167 | <Annotation Term="OData.LongDescription" String="This property shall contain integrity information about the Trusted Platform Module (TPM) identified by the TargetComponentURI property. This property shall be present if ComponentIntegrityType contains `TPM` and if `ComponentIntegrityEnabled` contains `true`. For other cases, this property shall be absent."/> |
Ed Tanous | 23203b4 | 2023-03-16 16:58:46 -0700 | [diff] [blame] | 168 | </Property> |
| 169 | </EntityType> |
| 170 | |
| 171 | <ComplexType Name="Actions"> |
| 172 | <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| 173 | <Annotation Term="OData.Description" String="The available actions for this resource."/> |
| 174 | <Annotation Term="OData.LongDescription" String="This type shall contain the available actions for this resource."/> |
| 175 | <Property Name="Oem" Type="ComponentIntegrity.v1_0_0.OemActions" Nullable="false"> |
| 176 | <Annotation Term="OData.Description" String="The available OEM-specific actions for this resource."/> |
| 177 | <Annotation Term="OData.LongDescription" String="This property shall contain the available OEM-specific actions for this resource."/> |
| 178 | </Property> |
| 179 | </ComplexType> |
| 180 | |
| 181 | <ComplexType Name="OemActions"> |
| 182 | <Annotation Term="OData.AdditionalProperties" Bool="true"/> |
| 183 | <Annotation Term="OData.Description" String="The available OEM-specific actions for this resource."/> |
| 184 | <Annotation Term="OData.LongDescription" String="This type shall contain the available OEM-specific actions for this resource."/> |
| 185 | </ComplexType> |
| 186 | |
| 187 | <EnumType Name="ComponentIntegrityType"> |
| 188 | <Member Name="SPDM"> |
| 189 | <Annotation Term="OData.Description" String="Security Protocol and Data Model (SPDM) protocol."/> |
| 190 | <Annotation Term="OData.LongDescription" String="This value shall indicate the integrity information is obtained through the Security Protocol and Data Model (SPDM) protocol as defined in DMTF DSP0274."/> |
| 191 | </Member> |
| 192 | <Member Name="TPM"> |
| 193 | <Annotation Term="OData.Description" String="Trusted Platform Module (TPM)."/> |
| 194 | <Annotation Term="OData.LongDescription" String="This value shall indicate the integrity information is related to a Trusted Platform Module (TPM) as defined by the Trusted Computing Group (TCG)."/> |
| 195 | </Member> |
| 196 | <Member Name="OEM"> |
| 197 | <Annotation Term="OData.Description" String="OEM-specific."/> |
| 198 | <Annotation Term="OData.LongDescription" String="This value shall indicate the integrity information is OEM-specific and the OEM section may include additional information."/> |
| 199 | </Member> |
| 200 | </EnumType> |
| 201 | |
| 202 | <ComplexType Name="Links" BaseType="Resource.Links"> |
| 203 | <Annotation Term="OData.Description" String="The links to other resources that are related to this resource."/> |
| 204 | <Annotation Term="OData.LongDescription" String="This Redfish Specification-described type shall contain links to resources that are related to but are not contained by, or subordinate to, this resource."/> |
| 205 | <NavigationProperty Name="ComponentsProtected" Type="Collection(Resource.Item)"> |
| 206 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 207 | <Annotation Term="OData.Description" String="An array of links to resources that the target component protects."/> |
| 208 | <Annotation Term="OData.LongDescription" String="This property shall contain an array of links to resources that the component identified by the TargetComponentURI property provides integrity protection. This property shall not contain the value of the TargetComponentURI property."/> |
| 209 | </NavigationProperty> |
| 210 | </ComplexType> |
| 211 | |
| 212 | <ComplexType Name="SPDMinfo"> |
| 213 | <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| 214 | <Annotation Term="OData.Description" String="Integrity information about an SPDM Responder as reported by an SPDM Requester."/> |
| 215 | <Annotation Term="OData.LongDescription" String="This object shall contain integrity information about an SPDM Responder as reported by an SPDM Requester."/> |
| 216 | <NavigationProperty Name="Requester" Type="Resource.Item" Nullable="false"> |
| 217 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
Gunnar Mills | 2ae81db | 2024-01-31 14:25:11 -0600 | [diff] [blame] | 218 | <Annotation Term="OData.Description" String="The link to the component that is reporting the integrity information of the target component."/> |
Ed Tanous | 23203b4 | 2023-03-16 16:58:46 -0700 | [diff] [blame] | 219 | <Annotation Term="OData.LongDescription" String="This property shall contain a link to the resource representing the SPDM Responder that is reporting the integrity of the SPDM Responder identified by the TargetComponentURI property."/> |
| 220 | <Annotation Term="Redfish.Required"/> |
| 221 | </NavigationProperty> |
| 222 | <Property Name="MeasurementSet" Type="ComponentIntegrity.v1_0_0.SPDMmeasurementSet"> |
| 223 | <Annotation Term="OData.Description" String="Measurement information about the SPDM Responder."/> |
| 224 | <Annotation Term="OData.LongDescription" String="This property shall contain measurement information for the SPDM Responder."/> |
| 225 | </Property> |
| 226 | <Property Name="IdentityAuthentication" Type="ComponentIntegrity.v1_0_0.SPDMidentity"> |
| 227 | <Annotation Term="OData.Description" String="Identity authentication information about the SPDM Requester and SPDM Responder."/> |
| 228 | <Annotation Term="OData.LongDescription" String="This property shall contain identity authentication information about the SPDM Requester and SPDM Responder."/> |
| 229 | </Property> |
| 230 | <Property Name="ComponentCommunication" Type="ComponentIntegrity.v1_0_0.SPDMcommunication"> |
| 231 | <Annotation Term="OData.Description" String="Information about communication between the SPDM Requester and SPDM Responder."/> |
| 232 | <Annotation Term="OData.LongDescription" String="This property shall contain information about communication between the SPDM Requester and SPDM Responder."/> |
| 233 | </Property> |
| 234 | </ComplexType> |
| 235 | |
| 236 | <ComplexType Name="TPMinfo"> |
| 237 | <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| 238 | <Annotation Term="OData.Description" String="Integrity information about a Trusted Platform Module (TPM)."/> |
| 239 | <Annotation Term="OData.LongDescription" String="This object shall contain integrity information about a Trusted Platform Module (TPM)."/> |
| 240 | <Property Name="MeasurementSet" Type="ComponentIntegrity.v1_0_0.TPMmeasurementSet"> |
| 241 | <Annotation Term="OData.Description" String="Measurement information from the TPM."/> |
| 242 | <Annotation Term="OData.LongDescription" String="This property shall contain measurement information from the TPM."/> |
| 243 | </Property> |
| 244 | <Property Name="IdentityAuthentication" Type="ComponentIntegrity.v1_0_0.TPMauth"> |
| 245 | <Annotation Term="OData.Description" String="Identity authentication information about the TPM."/> |
| 246 | <Annotation Term="OData.LongDescription" String="This property shall contain identity authentication information about the TPM."/> |
| 247 | </Property> |
| 248 | <Property Name="ComponentCommunication" Type="ComponentIntegrity.v1_0_0.TPMcommunication"> |
| 249 | <Annotation Term="OData.Description" String="Information about communication with the TPM."/> |
| 250 | <Annotation Term="OData.LongDescription" String="This property shall contain information about communication with the TPM."/> |
| 251 | </Property> |
| 252 | </ComplexType> |
| 253 | |
| 254 | <ComplexType Name="SPDMmeasurementSet"> |
| 255 | <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| 256 | <Annotation Term="OData.Description" String="SPDM Responder measurement information."/> |
| 257 | <Annotation Term="OData.LongDescription" String="This object shall contain SPDM Responder measurement information."/> |
| 258 | <Property Name="MeasurementSpecification" Type="ComponentIntegrity.v1_0_0.MeasurementSpecification"> |
| 259 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 260 | <Annotation Term="OData.Description" String="The measurement specification negotiated between the SPDM Requester and SPDM Responder."/> |
| 261 | <Annotation Term="OData.LongDescription" String="This property shall contain the measurement specification negotiated between the SPDM Requester and SPDM Responder."/> |
| 262 | </Property> |
| 263 | <Property Name="Measurements" Type="Collection(ComponentIntegrity.v1_0_0.SPDMsingleMeasurement)"> |
| 264 | <Annotation Term="OData.Description" String="Measurements from an SPDM Responder."/> |
| 265 | <Annotation Term="OData.LongDescription" String="This property shall contain measurements from an SPDM Responder."/> |
| 266 | </Property> |
| 267 | <Property Name="MeasurementSummary" Type="Edm.String"> |
| 268 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 269 | <Annotation Term="OData.Description" String="The measurement summary data."/> |
| 270 | <Annotation Term="OData.LongDescription" String="This property shall contain the Base64-encoded measurement summary using the hash algorithm indicated by the MeasurementSummaryHashAlgorithm property."/> |
| 271 | <Annotation Term="Validation.Pattern" String="^[A-Za-z0-9+/]+={0,2}$"/> |
| 272 | </Property> |
| 273 | <Property Name="MeasurementSummaryHashAlgorithm" Type="Edm.String"> |
| 274 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 275 | <Annotation Term="OData.Description" String="The hash algorithm used to compute the measurement summary."/> |
| 276 | <Annotation Term="OData.LongDescription" String="This property shall contain the hash algorithm used to compute the measurement summary. The allowable values for this property shall be the hash algorithm names found in the 'BaseHashAlgo' field of the 'NEGOTIATE_ALGORITHMS' request message in DSP0274. If the algorithm is an extended algorithm, this property shall contain the value `OEM`."/> |
| 277 | </Property> |
| 278 | <Property Name="MeasurementSummaryType" Type="ComponentIntegrity.v1_0_0.SPDMmeasurementSummaryType"> |
| 279 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 280 | <Annotation Term="OData.Description" String="The type of measurement summary."/> |
| 281 | <Annotation Term="OData.LongDescription" String="This property shall contain the type of measurement summary."/> |
| 282 | </Property> |
| 283 | <Property Name="Oem" Type="Resource.Oem" Nullable="false"> |
| 284 | <Annotation Term="OData.Description" String="The OEM extension property."/> |
| 285 | <Annotation Term="OData.LongDescription" String="This property shall contain the OEM extensions. All values for properties contained in this object shall conform to the Redfish Specification-described requirements."/> |
| 286 | </Property> |
| 287 | </ComplexType> |
| 288 | |
| 289 | <EnumType Name="MeasurementSpecification"> |
| 290 | <Member Name="DMTF"> |
| 291 | <Annotation Term="OData.Description" String="DMTF."/> |
| 292 | <Annotation Term="OData.LongDescription" String="This value shall indicate the measurement specification is defined by DMTF in DSP0274."/> |
| 293 | </Member> |
| 294 | </EnumType> |
| 295 | |
| 296 | <EnumType Name="SPDMmeasurementSummaryType"> |
| 297 | <Member Name="TCB"> |
| 298 | <Annotation Term="OData.Description" String="The measurement summary covers the TCB."/> |
| 299 | </Member> |
| 300 | <Member Name="All"> |
| 301 | <Annotation Term="OData.Description" String="The measurement summary covers all measurements in SPDM."/> |
| 302 | </Member> |
| 303 | </EnumType> |
| 304 | |
| 305 | <ComplexType Name="SPDMsingleMeasurement"> |
| 306 | <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| 307 | <Annotation Term="OData.Description" String="A single SPDM measurement for an SPDM Responder."/> |
| 308 | <Annotation Term="OData.LongDescription" String="This object shall contain a single SPDM measurement for an SPDM Responder."/> |
| 309 | <Property Name="MeasurementIndex" Type="Edm.Int64"> |
| 310 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 311 | <Annotation Term="OData.Description" String="The index of the measurement."/> |
| 312 | <Annotation Term="OData.LongDescription" String="This property shall contain the index of the measurement."/> |
| 313 | </Property> |
| 314 | <Property Name="PartofSummaryHash" Type="Edm.Boolean"> |
| 315 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 316 | <Annotation Term="OData.Description" String="Indicates whether this measurement is part of the measurement summary."/> |
| 317 | <Annotation Term="OData.LongDescription" String="This property shall indicate if this measurement is part of the measurement summary in the MeasurementSummary property. If this property is not present, it shall be assumed to be `false`."/> |
| 318 | </Property> |
| 319 | <Property Name="LastUpdated" Type="Edm.DateTimeOffset"> |
| 320 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 321 | <Annotation Term="OData.Description" String="The date and time when information for the measurement was last updated."/> |
| 322 | <Annotation Term="OData.LongDescription" String="This property shall contain the date and time when information for the measurement was last updated."/> |
| 323 | </Property> |
| 324 | <Property Name="Measurement" Type="Edm.String"> |
| 325 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 326 | <Annotation Term="OData.Description" String="The measurement data."/> |
| 327 | <Annotation Term="OData.LongDescription" String="This property shall contain the Base64-encoded measurement using the hash algorithm indicated by the MeasurementHashAlgorithm property. This property shall not contain a raw bit stream as a measurement. If the SPDM Responder provides a raw bit stream, the SPDM Requester may apply a hash algorithm to the raw bit stream in order to report the measurement."/> |
| 328 | <Annotation Term="Validation.Pattern" String="^[A-Za-z0-9+/]+={0,2}$"/> |
| 329 | </Property> |
| 330 | <Property Name="MeasurementHashAlgorithm" Type="Edm.String"> |
| 331 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 332 | <Annotation Term="OData.Description" String="The hash algorithm used to compute the measurement."/> |
| 333 | <Annotation Term="OData.LongDescription" String="This property shall contain the hash algorithm used to compute the measurement. The allowable values for this property shall be the hash algorithm names found in the 'BaseHashAlgo' field of the 'NEGOTIATE_ALGORITHMS' request message in DSP0274. If the algorithm is an extended algorithm, this property shall contain the value `OEM`. This property shall not be present if MeasurementSpecification does not contain `DMTF`."/> |
| 334 | </Property> |
| 335 | <Property Name="MeasurementType" Type="ComponentIntegrity.v1_0_0.DMTFmeasurementTypes"> |
| 336 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 337 | <Annotation Term="OData.Description" String="The type or characteristics of the data that this measurement represents."/> |
| 338 | <Annotation Term="OData.LongDescription" String="This property shall contain the type or characteristics of the data that this measurement represents. This property shall not be present if MeasurementSpecification does not contain `DMTF`."/> |
| 339 | </Property> |
| 340 | <Property Name="Oem" Type="Resource.Oem" Nullable="false"> |
| 341 | <Annotation Term="OData.Description" String="The OEM extension property."/> |
| 342 | <Annotation Term="OData.LongDescription" String="This property shall contain the OEM extensions. All values for properties contained in this object shall conform to the Redfish Specification-described requirements."/> |
| 343 | </Property> |
| 344 | </ComplexType> |
| 345 | |
| 346 | <EnumType Name="DMTFmeasurementTypes"> |
| 347 | <Member Name="ImmutableROM"> |
| 348 | <Annotation Term="OData.Description" String="Immutable ROM."/> |
| 349 | </Member> |
| 350 | <Member Name="MutableFirmware"> |
| 351 | <Annotation Term="OData.Description" String="Mutable firmware or any mutable code."/> |
| 352 | </Member> |
| 353 | <Member Name="HardwareConfiguration"> |
| 354 | <Annotation Term="OData.Description" String="Hardware configuration, such as straps."/> |
| 355 | </Member> |
| 356 | <Member Name="FirmwareConfiguration"> |
| 357 | <Annotation Term="OData.Description" String="Firmware configuration, such as configurable firmware policy."/> |
| 358 | </Member> |
| 359 | <Member Name="MutableFirmwareVersion"> |
| 360 | <Annotation Term="OData.Description" String="Mutable firmware version."/> |
| 361 | </Member> |
| 362 | <Member Name="MutableFirmwareSecurityVersionNumber"> |
| 363 | <Annotation Term="OData.Description" String="Mutable firmware security version number."/> |
| 364 | </Member> |
| 365 | <Member Name="MeasurementManifest"> |
| 366 | <Annotation Term="OData.Description" String="Measurement Manifest."/> |
| 367 | </Member> |
| 368 | </EnumType> |
| 369 | |
| 370 | <ComplexType Name="TPMmeasurementSet"> |
| 371 | <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| 372 | <Annotation Term="OData.Description" String="Trusted Computing Group TPM measurement information."/> |
| 373 | <Annotation Term="OData.LongDescription" String="This object shall contain Trusted Computing Group TPM measurement information."/> |
| 374 | <Property Name="Measurements" Type="Collection(ComponentIntegrity.v1_0_0.TPMsingleMeasurement)"> |
| 375 | <Annotation Term="OData.Description" String="Measurements from a TPM."/> |
| 376 | <Annotation Term="OData.LongDescription" String="This property shall contain measurements from a TPM."/> |
| 377 | </Property> |
| 378 | </ComplexType> |
| 379 | |
| 380 | <ComplexType Name="TPMsingleMeasurement"> |
| 381 | <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| 382 | <Annotation Term="OData.Description" String="A single Trusted Computing Group TPM measurement."/> |
| 383 | <Annotation Term="OData.LongDescription" String="This object shall contain a single Trusted Computing Group TPM measurement."/> |
| 384 | <Property Name="PCR" Type="Edm.Int64"> |
| 385 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 386 | <Annotation Term="OData.Description" String="The Platform Configuration Register (PCR) bank of the measurement."/> |
| 387 | <Annotation Term="OData.LongDescription" String="This property shall contain the Platform Configuration Register (PCR) bank of the measurement."/> |
| 388 | </Property> |
| 389 | <Property Name="Measurement" Type="Edm.String"> |
| 390 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 391 | <Annotation Term="OData.Description" String="The measurement data."/> |
| 392 | <Annotation Term="OData.LongDescription" String="This property shall contain the Base64-encoded PCR digest using the hashing algorithm indicated by MeasurementHashAlgorithm property."/> |
| 393 | <Annotation Term="Validation.Pattern" String="^[A-Za-z0-9+/]+={0,2}$"/> |
| 394 | </Property> |
| 395 | <Property Name="MeasurementHashAlgorithm" Type="Edm.String"> |
| 396 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 397 | <Annotation Term="OData.Description" String="The hash algorithm used to compute the measurement."/> |
| 398 | <Annotation Term="OData.LongDescription" String="This property shall contain the hash algorithm used to compute the measurement. The allowable values for this property shall be the strings in the 'Algorithm Name' field of the 'TPM_ALG_ID Constants' table within the 'Trusted Computing Group Algorithm Registry'."/> |
| 399 | </Property> |
| 400 | <Property Name="LastUpdated" Type="Edm.DateTimeOffset"> |
| 401 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 402 | <Annotation Term="OData.Description" String="The date and time when information for the measurement was last updated."/> |
| 403 | <Annotation Term="OData.LongDescription" String="This property shall contain the date and time when information for the measurement was last updated."/> |
| 404 | </Property> |
| 405 | </ComplexType> |
| 406 | |
| 407 | <EnumType Name="VerificationStatus"> |
| 408 | <Member Name="Success"> |
| 409 | <Annotation Term="OData.Description" String="Successful verification."/> |
| 410 | </Member> |
| 411 | <Member Name="Failed"> |
| 412 | <Annotation Term="OData.Description" String="Unsuccessful verification."/> |
| 413 | </Member> |
| 414 | </EnumType> |
| 415 | |
| 416 | <ComplexType Name="CommonAuthInfo"> |
| 417 | <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| 418 | <Annotation Term="OData.Description" String="Common Authentication information."/> |
| 419 | <Annotation Term="OData.LongDescription" String="This object shall contain common identity-related authentication information."/> |
| 420 | <NavigationProperty Name="ComponentCertificate" Type="Certificate.Certificate" Nullable="false"> |
| 421 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
Gunnar Mills | 2ae81db | 2024-01-31 14:25:11 -0600 | [diff] [blame] | 422 | <Annotation Term="OData.Description" String="A link to the certificate that represents the identity of the component."/> |
| 423 | <Annotation Term="OData.LongDescription" String="This property shall contain a link to a resource of type Certificate that represents the identity of the component referenced by the TargetComponentURI property."/> |
Ed Tanous | 23203b4 | 2023-03-16 16:58:46 -0700 | [diff] [blame] | 424 | </NavigationProperty> |
| 425 | <Property Name="VerificationStatus" Type="ComponentIntegrity.v1_0_0.VerificationStatus"> |
| 426 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 427 | <Annotation Term="OData.Description" String="The status of the verification of the identity of the component."/> |
Gunnar Mills | 2ae81db | 2024-01-31 14:25:11 -0600 | [diff] [blame] | 428 | <Annotation Term="OData.LongDescription" String="This property shall contain the status of the verification of the identity of the component referenced by the TargetComponentURI property."/> |
Ed Tanous | 23203b4 | 2023-03-16 16:58:46 -0700 | [diff] [blame] | 429 | </Property> |
| 430 | </ComplexType> |
| 431 | |
| 432 | <ComplexType Name="SPDMresponderAuth" BaseType="ComponentIntegrity.v1_0_0.CommonAuthInfo"/> |
| 433 | <ComplexType Name="TPMauth" BaseType="ComponentIntegrity.v1_0_0.CommonAuthInfo"/> |
| 434 | |
| 435 | <ComplexType Name="SPDMrequesterAuth"> |
| 436 | <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| 437 | <Annotation Term="OData.Description" String="Authentication information of the identity of the SPDM Requester."/> |
| 438 | <Annotation Term="OData.LongDescription" String="This object shall contain authentication information of the identity of the SPDM Requester."/> |
| 439 | <NavigationProperty Name="ProvidedCertificate" Type="Certificate.Certificate" Nullable="false"> |
| 440 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
Gunnar Mills | 2ae81db | 2024-01-31 14:25:11 -0600 | [diff] [blame] | 441 | <Annotation Term="OData.Description" String="A link to the certificate that represents the identity of the SPDM Requester provided in mutual authentication."/> |
| 442 | <Annotation Term="OData.LongDescription" String="This property shall contain a link to a resource of type Certificate that represents the identity of the SPDM Requester provided in mutual authentication."/> |
Ed Tanous | 23203b4 | 2023-03-16 16:58:46 -0700 | [diff] [blame] | 443 | </NavigationProperty> |
| 444 | </ComplexType> |
| 445 | |
| 446 | <ComplexType Name="SPDMidentity"> |
| 447 | <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| 448 | <Annotation Term="OData.Description" String="Identity authentication information about the SPDM Requester and SPDM Responder."/> |
| 449 | <Annotation Term="OData.LongDescription" String="This object shall contain identity authentication information about the SPDM Requester and SPDM Responder."/> |
| 450 | <Property Name="ResponderAuthentication" Type="ComponentIntegrity.v1_0_0.SPDMresponderAuth"> |
| 451 | <Annotation Term="OData.Description" String="Authentication information of the identity of the SPDM Responder."/> |
| 452 | <Annotation Term="OData.LongDescription" String="This property shall contain authentication information of the identity of the SPDM Responder."/> |
| 453 | </Property> |
| 454 | <Property Name="RequesterAuthentication" Type="ComponentIntegrity.v1_0_0.SPDMrequesterAuth"> |
| 455 | <Annotation Term="OData.Description" String="Authentication information of the identity of the SPDM Requester."/> |
| 456 | <Annotation Term="OData.LongDescription" String="This property shall contain authentication information of the identity of the SPDM Requester."/> |
| 457 | </Property> |
| 458 | </ComplexType> |
| 459 | |
| 460 | <EnumType Name="SecureSessionType"> |
| 461 | <Member Name="Plain"> |
| 462 | <Annotation Term="OData.Description" String="A plain text session without any protection."/> |
| 463 | </Member> |
| 464 | <Member Name="EncryptedAuthenticated"> |
| 465 | <Annotation Term="OData.Description" String="An established session where both encryption and authentication are protecting the communication."/> |
| 466 | </Member> |
| 467 | <Member Name="AuthenticatedOnly"> |
| 468 | <Annotation Term="OData.Description" String="An established session where only authentication is protecting the communication."/> |
| 469 | </Member> |
| 470 | </EnumType> |
| 471 | |
| 472 | <ComplexType Name="SingleSessionInfo"> |
| 473 | <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| 474 | <Annotation Term="OData.Description" String="Information about a single communication channel or session between two components."/> |
| 475 | <Annotation Term="OData.LongDescription" String="This object shall contain information about a single communication channel or session between two components."/> |
| 476 | <Property Name="SessionId" Type="Edm.Int64"> |
| 477 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 478 | <Annotation Term="OData.Description" String="The identifier for an active session or communication channel between two components."/> |
| 479 | <Annotation Term="OData.LongDescription" String="This property shall contain the unique identifier for the active session or communication channel between two components."/> |
| 480 | </Property> |
| 481 | <Property Name="SessionType" Type="ComponentIntegrity.v1_0_0.SecureSessionType"> |
| 482 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 483 | <Annotation Term="OData.Description" String="The type of session or communication channel between two components."/> |
| 484 | <Annotation Term="OData.LongDescription" String="This property shall contain the type of session or communication channel between two components."/> |
| 485 | </Property> |
| 486 | </ComplexType> |
| 487 | |
| 488 | <ComplexType Name="CommunicationInfo"> |
| 489 | <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| 490 | <Annotation Term="OData.Description" String="Information about communication between two components."/> |
| 491 | <Annotation Term="OData.LongDescription" String="This object shall contain information about communication between two components."/> |
| 492 | <Property Name="Sessions" Type="Collection(ComponentIntegrity.v1_0_0.SingleSessionInfo)"> |
| 493 | <Annotation Term="OData.Description" String="The active sessions or communication channels between two components."/> |
Gunnar Mills | 2ae81db | 2024-01-31 14:25:11 -0600 | [diff] [blame] | 494 | <Annotation Term="OData.LongDescription" String="This property shall contain an array of the active sessions or communication channels between two components. The active sessions or communication channels do not reflect how future sessions or communication channels are established."/> |
Ed Tanous | 23203b4 | 2023-03-16 16:58:46 -0700 | [diff] [blame] | 495 | </Property> |
| 496 | </ComplexType> |
| 497 | |
| 498 | <ComplexType Name="SPDMcommunication" BaseType="ComponentIntegrity.v1_0_0.CommunicationInfo"/> |
| 499 | <ComplexType Name="TPMcommunication" BaseType="ComponentIntegrity.v1_0_0.CommunicationInfo"/> |
| 500 | |
| 501 | <ComplexType Name="SPDMGetSignedMeasurementsResponse"> |
| 502 | <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| 503 | <Annotation Term="OData.Description" String="The SPDM signed measurement from an SPDM Responder."/> |
| 504 | <Annotation Term="OData.LongDescription" String="This object shall contain the SPDM signed measurements from an SPDM Responder."/> |
| 505 | <Property Name="SignedMeasurements" Type="Edm.String" Nullable="false"> |
| 506 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
Gunnar Mills | 2ae81db | 2024-01-31 14:25:11 -0600 | [diff] [blame] | 507 | <Annotation Term="OData.Description" String="Base64-encoded cryptographic signed statement generated by the signer."/> |
Ed Tanous | 23203b4 | 2023-03-16 16:58:46 -0700 | [diff] [blame] | 508 | <Annotation Term="OData.LongDescription" String="This property shall contain the cryptographic signed statement over the given nonce and measurement blocks corresponding to the requested measurement indices. If the SPDM version is 1.2, this value shall be a concatenation of SPDM 'VCA' and 'GET_MEASUREMENTS' requests and responses exchanged between the SPDM Requester and the SPDM Responder. If SPDM version is 1.0 or 1.1, this value shall be a concatenation of SPDM 'GET_MEASUREMENTS' requests and responses exchanged between the SPDM Requester and the SPDM Responder. The last 'MEASUREMENTS' response shall contain a signature generated over the 'L2' string by the SPDM Responder."/> |
| 509 | <Annotation Term="Redfish.Required"/> |
| 510 | </Property> |
| 511 | <NavigationProperty Name="Certificate" Type="Certificate.Certificate" Nullable="false"> |
| 512 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 513 | <Annotation Term="OData.Description" String="A link to the certificate corresponding to the SPDM slot identifier that can be used to validate the signature."/> |
| 514 | <Annotation Term="OData.LongDescription" String="This property shall contain a link to a resource of type Certificate that represents the certificate corresponding to the SPDM slot identifier that can be used to validate the signature. This property shall not be present if the SlotId parameter contains the value `15`."/> |
| 515 | </NavigationProperty> |
| 516 | <Property Name="PublicKey" Type="Edm.String" Nullable="false"> |
| 517 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 518 | <Annotation Term="OData.Description" String="A Privacy Enhanced Mail (PEM)-encoded public key that can be used to validate the signature."/> |
| 519 | <Annotation Term="OData.LongDescription" String="This property shall contain a Privacy Enhanced Mail (PEM)-encoded public key, as defined in section 13 of RFC7468, that can be used to validate the signature. This property shall only be present when the SPDM Requester was pre-provisioned with the SPDM Responder's public key and the SlotId parameter contains the value `15`."/> |
| 520 | </Property> |
| 521 | <Property Name="Version" Type="Edm.String" Nullable="false"> |
| 522 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 523 | <Annotation Term="OData.Description" String="The SPDM version used by the SPDM Responder to generate the cryptographic signed statement."/> |
| 524 | <Annotation Term="OData.LongDescription" String="This property shall contain the SPDM version negotiated between the SPDM Requester and the SPDM Responder to generate the cryptographic signed statement. For example, `1.0`, `1.1`, or `1.2`."/> |
| 525 | <Annotation Term="Redfish.Required"/> |
| 526 | </Property> |
| 527 | <Property Name="HashingAlgorithm" Type="Edm.String" Nullable="false"> |
| 528 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 529 | <Annotation Term="OData.Description" String="The hashing algorithm used for generating the cryptographic signed statement."/> |
| 530 | <Annotation Term="OData.LongDescription" String="This property shall contain the hashing algorithm negotiated between the SPDM Requester and the SPDM Responder. The allowable values for this property shall be the hash algorithm names found in the 'BaseHashAlgo' field of the 'NEGOTIATE_ALGORITHMS' request message in DSP0274. If the algorithm is an extended algorithm, this property shall contain the value `OEM`."/> |
| 531 | <Annotation Term="Redfish.Required"/> |
| 532 | </Property> |
| 533 | <Property Name="SigningAlgorithm" Type="Edm.String" Nullable="false"> |
| 534 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 535 | <Annotation Term="OData.Description" String="The asymmetric signing algorithm used for generating the cryptographic signed statement."/> |
| 536 | <Annotation Term="OData.LongDescription" String="This property shall contain the asymmetric signing algorithm negotiated between the SPDM Requester and the SPDM Responder. The allowable values for this property shall be the asymmetric key signature algorithm names found in the 'BaseAsymAlgo' field of the 'NEGOTIATE_ALGORITHMS' request message in DSP0274. If the algorithm is an extended algorithm, this property shall contain the value `OEM`."/> |
| 537 | <Annotation Term="Redfish.Required"/> |
| 538 | </Property> |
| 539 | <Property Name="Oem" Type="Resource.Oem" Nullable="false"> |
| 540 | <Annotation Term="OData.Description" String="The OEM extension property."/> |
| 541 | <Annotation Term="OData.LongDescription" String="This property shall contain the OEM extensions. All values for properties contained in this object shall conform to the Redfish Specification-described requirements."/> |
| 542 | </Property> |
| 543 | </ComplexType> |
| 544 | </Schema> |
| 545 | |
| 546 | <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="ComponentIntegrity.v1_0_1"> |
| 547 | <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| 548 | <Annotation Term="OData.Description" String="This version was created to allow for TPMs to reference TrustedComponent resources from the TargetComponentURI property. It was also created to clarify the nonce provided in the SPDMGetSignedMeasurements action is sent to the SPDM Responder in the 'GET_MEASUREMENTS' request. It was also created to add a regular expression pattern to ComponentIntegrityTypeVersion when ComponentIntegrityType contains `SPDM`."/> |
| 549 | <EntityType Name="ComponentIntegrity" BaseType="ComponentIntegrity.v1_0_0.ComponentIntegrity"/> |
| 550 | </Schema> |
| 551 | |
Ed Tanous | f263e09 | 2023-05-22 09:56:29 -0700 | [diff] [blame] | 552 | <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="ComponentIntegrity.v1_0_2"> |
| 553 | <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| 554 | <Annotation Term="OData.Description" String="This version was created to clarify the usage of ComponentIntegrityTypeVersion when security protocols are disabled."/> |
| 555 | <EntityType Name="ComponentIntegrity" BaseType="ComponentIntegrity.v1_0_1.ComponentIntegrity"/> |
| 556 | </Schema> |
| 557 | |
Gunnar Mills | 2ae81db | 2024-01-31 14:25:11 -0600 | [diff] [blame] | 558 | <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="ComponentIntegrity.v1_0_3"> |
| 559 | <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| 560 | <Annotation Term="OData.Description" String="This version was created to correct various typographical errors."/> |
| 561 | <EntityType Name="ComponentIntegrity" BaseType="ComponentIntegrity.v1_0_2.ComponentIntegrity"/> |
| 562 | </Schema> |
| 563 | |
Ed Tanous | 23203b4 | 2023-03-16 16:58:46 -0700 | [diff] [blame] | 564 | <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="ComponentIntegrity.v1_1_0"> |
| 565 | <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| 566 | <Annotation Term="Redfish.Release" String="2022.1"/> |
| 567 | |
| 568 | <EntityType Name="ComponentIntegrity" BaseType="ComponentIntegrity.v1_0_0.ComponentIntegrity"/> |
| 569 | |
| 570 | <ComplexType Name="SPDMsingleMeasurement" BaseType="ComponentIntegrity.v1_0_0.SPDMsingleMeasurement"> |
| 571 | <Property Name="SecurityVersionNumber" Type="Edm.String"> |
| 572 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 573 | <Annotation Term="OData.Description" String="The security version number the measurement represents."/> |
| 574 | <Annotation Term="OData.LongDescription" String="This property shall contain an 8-byte hex-encoded string of the security version number the measurement represents. This property shall only be present if MeasurementType contains the value `MutableFirmwareSecurityVersionNumber`."/> |
| 575 | <Annotation Term="Validation.Pattern" String="^[A-Za-z0-9]{16}$"/> |
| 576 | </Property> |
| 577 | </ComplexType> |
| 578 | </Schema> |
| 579 | |
| 580 | <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="ComponentIntegrity.v1_1_1"> |
| 581 | <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| 582 | <Annotation Term="OData.Description" String="This version was created to allow for TPMs to reference TrustedComponent resources from the TargetComponentURI property. It was also created to clarify the nonce provided in the SPDMGetSignedMeasurements action is sent to the SPDM Responder in the 'GET_MEASUREMENTS' request. It was also created to add a regular expression pattern to ComponentIntegrityTypeVersion when ComponentIntegrityType contains `SPDM`."/> |
| 583 | <EntityType Name="ComponentIntegrity" BaseType="ComponentIntegrity.v1_1_0.ComponentIntegrity"/> |
| 584 | </Schema> |
| 585 | |
Ed Tanous | f263e09 | 2023-05-22 09:56:29 -0700 | [diff] [blame] | 586 | <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="ComponentIntegrity.v1_1_2"> |
| 587 | <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| 588 | <Annotation Term="OData.Description" String="This version was created to clarify the usage of ComponentIntegrityTypeVersion when security protocols are disabled."/> |
| 589 | <EntityType Name="ComponentIntegrity" BaseType="ComponentIntegrity.v1_1_1.ComponentIntegrity"/> |
| 590 | </Schema> |
| 591 | |
Gunnar Mills | 2ae81db | 2024-01-31 14:25:11 -0600 | [diff] [blame] | 592 | <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="ComponentIntegrity.v1_1_3"> |
| 593 | <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| 594 | <Annotation Term="OData.Description" String="This version was created to correct various typographical errors."/> |
| 595 | <EntityType Name="ComponentIntegrity" BaseType="ComponentIntegrity.v1_1_2.ComponentIntegrity"/> |
| 596 | </Schema> |
| 597 | |
Ed Tanous | 23203b4 | 2023-03-16 16:58:46 -0700 | [diff] [blame] | 598 | <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="ComponentIntegrity.v1_2_0"> |
| 599 | <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| 600 | <Annotation Term="Redfish.Release" String="2022.2"/> |
| 601 | <Annotation Term="OData.Description" String="This version was created to add the TPMGetSignedMeasurements action to allow for a TPM to return signed measurements."/> |
| 602 | |
| 603 | <EntityType Name="ComponentIntegrity" BaseType="ComponentIntegrity.v1_1_1.ComponentIntegrity"/> |
| 604 | |
| 605 | <ComplexType Name="TPMinfo" BaseType="ComponentIntegrity.v1_0_0.TPMinfo"> |
| 606 | <Property Name="NonceSizeBytesMaximum" Type="Edm.Int64"> |
| 607 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 608 | <Annotation Term="OData.Description" String="The maximum number of bytes that can be specified in the Nonce parameter of the TPMGetSignedMeasurements action."/> |
| 609 | <Annotation Term="OData.LongDescription" String="This property shall contain the maximum number of bytes that can be specified in the Nonce parameter of the TPMGetSignedMeasurements action."/> |
| 610 | <Annotation Term="Validation.Minimum" Int="0"/> |
| 611 | </Property> |
| 612 | </ComplexType> |
| 613 | |
| 614 | <ComplexType Name="TPMGetSignedMeasurementsResponse"> |
| 615 | <Annotation Term="OData.AdditionalProperties" Bool="false"/> |
| 616 | <Annotation Term="OData.Description" String="The TPM signed measurement from a TPM."/> |
Gunnar Mills | 2ae81db | 2024-01-31 14:25:11 -0600 | [diff] [blame] | 617 | <Annotation Term="OData.LongDescription" String="This object shall contain the TPM signed PCR measurements from a TPM."/> |
Ed Tanous | 23203b4 | 2023-03-16 16:58:46 -0700 | [diff] [blame] | 618 | <Property Name="SignedMeasurements" Type="Edm.String" Nullable="false"> |
| 619 | <Annotation Term="OData.Permissions" EnumMember="OData.Permission/Read"/> |
| 620 | <Annotation Term="OData.Description" String="The Base64-encoded cryptographic signed statement generated by the signer."/> |
| 621 | <Annotation Term="OData.LongDescription" String="This property shall contain a Base64-encoded cryptographic signed statement generated by the signer. This value shall be the concatenation of the 'quoted' and 'signature' response values of the 'TPM2_Quote' command defined in the Trusted Platform Module Library Specification."/> |
| 622 | <Annotation Term="Redfish.Required"/> |
| 623 | </Property> |
| 624 | <Property Name="Oem" Type="Resource.Oem" Nullable="false"> |
| 625 | <Annotation Term="OData.Description" String="The OEM extension property."/> |
| 626 | <Annotation Term="OData.LongDescription" String="This property shall contain the OEM extensions. All values for properties contained in this object shall conform to the Redfish Specification-described requirements."/> |
| 627 | </Property> |
| 628 | </ComplexType> |
| 629 | </Schema> |
| 630 | |
Ed Tanous | f263e09 | 2023-05-22 09:56:29 -0700 | [diff] [blame] | 631 | <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="ComponentIntegrity.v1_2_1"> |
| 632 | <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| 633 | <Annotation Term="OData.Description" String="This version was created to clarify the usage of ComponentIntegrityTypeVersion when security protocols are disabled."/> |
| 634 | <EntityType Name="ComponentIntegrity" BaseType="ComponentIntegrity.v1_2_0.ComponentIntegrity"/> |
| 635 | </Schema> |
| 636 | |
Gunnar Mills | 2ae81db | 2024-01-31 14:25:11 -0600 | [diff] [blame] | 637 | <Schema xmlns="http://docs.oasis-open.org/odata/ns/edm" Namespace="ComponentIntegrity.v1_2_2"> |
| 638 | <Annotation Term="Redfish.OwningEntity" String="DMTF"/> |
| 639 | <Annotation Term="OData.Description" String="This version was created to correct various typographical errors."/> |
| 640 | <EntityType Name="ComponentIntegrity" BaseType="ComponentIntegrity.v1_2_1.ComponentIntegrity"/> |
| 641 | </Schema> |
| 642 | |
Ed Tanous | 23203b4 | 2023-03-16 16:58:46 -0700 | [diff] [blame] | 643 | </edmx:DataServices> |
| 644 | </edmx:Edmx> |