FOr consideration by TAGPMA [Fwd: Now Available - Authorization Specification 1.0 released by SPDM Working Group]

[Sill, Alan]

Good afternoon all,

As I mentioned in the TAGPMA meeting today, the REPACSS project is continuing work with the DMTF standards development organization on topics related ti data center APIs, standards, and associated security topics. Our particular emphasis on this topic is on co-location of computing equipment for academic computing collaborations.

It is in scope for this group to consider the authorization and authentication related topics associated with these standards. I would like to direct your attention to the standards DMTF has developed in this context, and invite your thoughts on how REPACSS, the IGTF  or TAGPMA, DMTF, and optionally OGF can pursue topics related to managing equipment operated by multiple organizations in a co-location setting. This is a bit beyond the usual individual authentication related focus of the IGTF< but I believe it is within scope for discussion, and would like to hear your thoughts.

Feel free to reach out to me with any questions.

Thanks,

Alan Sill, Ph.D
Managing Director, High Performance Computing Center
Adjunct Professor of Physics and Astronomy
Texas Tech University
Drane 159, MS 4-1167
https://www.depts.ttu.edu/hpcc

Co-Director, NSF Center for Cloud and Autonomic Computing 
https://nsfcac.org

Co-Director, REPACSS project
https://repacss.org

e-mail: Alan...@ttu.edu
ph. 806-834-5940

Begin forwarded message:

From: DMTF Inc <ne...@dmtf.org>

Subject: Now Available - Authorization Specification 1.0 released by SPDM Working Group

Date: December 9, 2025 at 12:00:46 PM CST

To: <alan...@ttu.edu>

Reply-To: DMTF Inc <ne...@dmtf.org>

This email originated outside TTU. Please exercise caution!

Get the latest news from DMTF!                                               View this email in your browser Now Available - Authorization Specification 1.0 released by SPDM Working Group DMTF’s Security Protocols and Data Models (SPDM) Working Group has recently released a new Authorization Specification (DSP0289). This specification adds authorization capabilities to the existing suite of SPDM specifications. Authorization allows a device to verify that a requester has permission to access protected functions. The standard aims to address authorization uniformly across SPDM and PMCI standards, as well as among DMTF alliance partners and the wider industry.    This release includes the Authorization Specification (DSP0289) and updates the suite of SPDM specifications. Key updates include the versions of SPDM messages (DSP0274), the Secured Messages using SPDM over MCTP Binding Specification (DSP0276), and SPDM Secured Messages (DSP0277). Additionally, as part of this release, there are updates to version 1.0 of Secured Messages using SPDM for backward compatibility for infrastructures relying on it. There is also a 2.0 version of Secured Messages for SPDM for implementations desiring a more concise layering. The updates to DSP0274 are required for implementations supporting Authorization.   These specifications - developed by the SPDM Working Group - incorporate feedback from the organization’s alliance partners. To learn more about the SPDM Working Group or to get involved in this work, please visit https://www.dmtf.org/standards/spdm.  Copyright © 2025 DMTF, Inc All rights reserved. 1050 SW 6th Avenue, #1100 Portland, OR 97204 Want to change how you receive these emails? You can update your preferences or unsubscribe from this list