- From: Vincent Minet via GitHub <sysbot+gh@w3.org>
- Date: Mon, 29 May 2023 16:35:38 +0000
- To: public-patcg@w3.org
vminet has just created a new issue for https://github.com/patcg/meetings: == Agenda Request - On premise trusted servers == ## Agenda+: On premise trusted servers Criteo would like to discuss the option of running trusted server on-premise in an adtech own infrastructure. The current draft mandates that services running in a TEE should be deployed on a cloud platform. We would like to understand why ? Being required to operate on a cloud platform is likely to increase an adtech’s costs significantly. Considering the security guarantees offered by TEE, this requirement is a little odd. For example, remote attestation would work just as well from an adtech own infrastructure. Unless there is a fear that side-channel attacks could be too easily exploited in the wild ? The fact that the cloud platform is a trusted entity in the current draft is maybe a hint of that ? In that case, what security features an infrastructure would need to provide to be allowed to host TEE and what TEE implementation would be allowed ? ## Time 30 minutes to 1 hour ### Links https://github.com/privacysandbox/fledge-docs/blob/main/trusted_services_overview.md Please view or discuss this issue at https://github.com/patcg/meetings/issues/122 using your GitHub account -- Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Monday, 29 May 2023 16:35:39 UTC