DMTF Releases Security Specification 1.2

DMTF announces the public release of its Security Protocol and Data Model (SPDM) Specification 1.2.0 is now available for download. This specification – developed by DMTF’s Platform Management Communications Infrastructure (PMCI) Security Task Force – continues to incorporate the input of the organization’s Alliance Partners to help align component authentication, confidentiality, and integrity objects across the industry.

The SPDM Specification (DSP0274) provides message exchange, sequence diagrams, message formats, and other relevant semantics for authentication, firmware measurement, certificate retrieval, and session key exchange protocols to enable confidentiality and integrity protected data communication thus enabling encrypted and authenticated communication of data in flight. 

SPDM 1.2 includes new features such as Certificate Provisioning (allowing installation of device certificates, including during manufacturing), Alias Certificates (allowing for alias leaf certificates derived from device certificates) and Message Fragmentation (ability to send large SPDM messages in chunks). In addition, SM2, SM3, SM4 algorithms are now included, and new Object Identifiers (OIDs) were added.

Other specifications define the mapping of these messages to different transports and physical media. SPDM enables efficient access to low-level security capabilities and operations. 

For more information about the PMCI Working Group and the platform management standards it defines, please visit https://www.dmtf.org/standards/pmci.