|
| 1 | += Supply chain security through SLSA conformity |
| 2 | + |
| 3 | + |
| 4 | +== Supply-chain Levels for Software Artifacts (SLSA) |
| 5 | + |
| 6 | +Supply-chain Levels for Software Artifacts (SLSA) is a security framework produced through industry collaboration. We use this framework as a guide for reinforcing the build process we use for your applications, to better secure your software supply chain. |
| 7 | + |
| 8 | +SLSA assigns two primary responsibilities to build platforms like {ProductName}: |
| 9 | + |
| 10 | +* Provenance to describe how the platform built each software artifact |
| 11 | +* Build isolation to prevent tampering with the build process |
| 12 | + |
| 13 | +SLSA also includes three Build Levels, which provide you with increasing guarantees about how build platforms fulfill these responsibilities. Any build platform that generates provenance conforms to the SLSA framework’s Build Level 1 (L1) specifications. Build platforms produce artifacts with higher Build Levels by hardening provenance against forgery and by isolating the build process. As of the v1.0 specification, Build Level 3 (L3) is the highest Build Level. {ProductName} produces Build L3 artifacts. |
| 14 | + |
| 15 | +The rest of this document further explains our key responsibilities, provenance and build isolation, and how we fulfill those responsibilities. It concludes with a table summarizing how {ProductName} meets the requirements for SLSA Build L3. |
| 16 | + |
| 17 | + |
| 18 | +== SLSA Provenance |
| 19 | + |
| 20 | +In the context of its framework, SLSA defines provenance as “the verifiable information about software artifacts describing where, when and how something was produced.” SLSA provenance is expressed through attestation, and for higher Build Levels, build platforms must sign that attestation. |
| 21 | + |
| 22 | +=== Attestation |
| 23 | + |
| 24 | +Attestation is the fundamental component of provenance, and you can think of it like a recipe. A recipe tells you how someone made a certain dish, and attestation tells you how a build platform created a software artifact. Our SLSA attestation specifically includes a subject that tells you which artifact the attestation belongs to, and a predicate that explains how {ProductName} built each artifact, including relevant links. |
| 25 | + |
| 26 | +=== Signing the attestation |
| 27 | + |
| 28 | +At higher Build Levels, SLSA directs build platforms to harden their provenance by signing each attestation. With the signature, you can verify that no one tampered with the attestation for your artifacts. Currently, {ProductName} signs attestations using a private key. |
| 29 | + |
| 30 | +=== Evaluating provenance |
| 31 | + |
| 32 | +In its Build Levels, SLSA evaluates provenance based on three questions: |
| 33 | + |
| 34 | +* Completeness: Does the provenance fully explain how the artifact was built? |
| 35 | +* Authenticity: How certain are you that the provenance came from the builder? |
| 36 | +* Accuracy: How difficult is it to tamper with provenance during the build process? |
| 37 | + |
| 38 | +Completeness of provenance comes from its attestation, and authenticity derives from the signature. |
| 39 | + |
| 40 | +Accuracy is where provenance and build isolation intersect. To generate unforgeable provenance, build platforms must store those secret materials in a secure management system that platform users cannot access. In {ProductName}, only Tekton Chains, which generates and signs provenance, has access to the private key. |
| 41 | + |
| 42 | + |
| 43 | +== Build isolation |
| 44 | + |
| 45 | +According to the SLSA framework, our other primary responsibility is to guarantee that we build your software correctly, without external influence, by isolating the builds. For Build L2, SLSA directs build platforms to run builds in a hosted environment, and for Build L3, they direct us to make builds internally isolated within that hosted environment. |
| 46 | + |
| 47 | +=== Hosted |
| 48 | + |
| 49 | +If builds run on an individual’s workstation, they become inconsistent. This inconsistency can cause mundane technical issues, but it also introduces security risks. What if undetected malware is lurking on that person’s machine? |
| 50 | + |
| 51 | +To shrink the attack plane, SLSA dicates that builds should execute “using a hosted build platform on shared or dedicated infrastructure, not on an individual’s workstation.” By using an environment that comes from a known, auditable state, build platforms can largely ensure that they generate artifacts in the same way every time. |
| 52 | + |
| 53 | +{ProductName} is a hosted build platform. We execute builds on Amazon Web Services (AWS) through Red Hat OpenShift Service on AWS (ROSA). |
| 54 | + |
| 55 | + |
| 56 | +=== Internally isolated |
| 57 | + |
| 58 | +Running builds in a hosted environment can protect your builds from malware installed on an individual’s workstation. But an attacker could gain access to your instance of a hosted build platform. What if they inject a malicious payload into one of your artifacts during the build process, and falsify the provenance to cover their tracks? Or what if they use one build to poison an environment that another build uses? |
| 59 | + |
| 60 | +To mitigate these threats, and others, SLSA instructs build platforms to execute builds in an environment that, within the larger hosted environment, is internally isolated from other builds, users, and the control plane. The only external influence that is permissible is influence that the build itself requests, such as dependencies. |
| 61 | + |
| 62 | +{ProductName} internally isolates builds within ROSA using several different tactics. For example, Tekton Chains generates and signs provenance in its own namespace, separate from the one that runs user-defined build steps, so attackers cannot forge provenance. And builds themselves run in their own ephemeral pods, so they cannot persist or influence the build environment of subsequent builds. |
| 63 | + |
| 64 | + |
| 65 | +== How we meet the requirements for SLSA Build L3 |
| 66 | + |
| 67 | +The following table summarizes how {ProductName} conforms to the specification for producing SLSA Build L3 software artifacts. |
| 68 | + |
| 69 | +[cols="1,1, 1"] |
| 70 | +|=== |
| 71 | +|Build level |Requirements |How we meet them |
| 72 | + |
| 73 | +3+^|_For provenance_ |
| 74 | + |
| 75 | +|L1: Provenance exists |
| 76 | +a|Provenance is: |
| 77 | + |
| 78 | +* Automatically generated |
| 79 | +* Formatted per SLSA guidelines, or contains equivalent information |
| 80 | +* Complete as possible |
| 81 | + |
| 82 | +a|Provenance in {ProductName} is: |
| 83 | + |
| 84 | +* Generated for each software artifact |
| 85 | +* Formatted according to SLSA guidelines |
| 86 | +* Complete |
| 87 | + |
| 88 | + |
| 89 | +|L2: Hosted build platform |
| 90 | +a|Provenance is complete and authentic: |
| 91 | + |
| 92 | +* Users can validate provenance. |
| 93 | +* The control plane, not tenants, generates provenance. |
| 94 | +* Provenance is complete. |
| 95 | + |
| 96 | +a|{ProductName}: |
| 97 | + |
| 98 | +* Signs attestations with a private key |
| 99 | +* Generates provenance itself using Tekton Chains |
| 100 | +* Generates complete attestations |
| 101 | + |
| 102 | +|L3: Hardened builds |
| 103 | +a|Provenance is complete, authentic, and accurate: |
| 104 | + |
| 105 | +* Secret material used to authenticate provenance is stored in a secure management system. |
| 106 | +* Secret material is not accessible to the environment running user-defined build steps. |
| 107 | +* Provenance is complete, including fully enumerated external parameters. |
| 108 | + |
| 109 | +a|{ProductName}: |
| 110 | + |
| 111 | +* Stores secret materials in Tekton Chains, which is a secure management system |
| 112 | +* Uses Tekton Chains in a separate namespace |
| 113 | +* Enumerates external parameters in its provenance |
| 114 | + |
| 115 | + |
| 116 | +3+^|_For build isolation_ |
| 117 | + |
| 118 | +|L1: Provenance exists |
| 119 | +|None |
| 120 | +|N/A |
| 121 | + |
| 122 | +|L2: Hosted build platform |
| 123 | +|All build steps run using a hosted build platform on shared or dedicated infrastructure, not on an individual’s workstation. |
| 124 | +|{ProductName} is hosted through ROSA. |
| 125 | + |
| 126 | +|L3: Hardened builds |
| 127 | +a|Builds run in an isolated environment: |
| 128 | + |
| 129 | +* Builds cannot access secrets of the platform. |
| 130 | +* Two builds cannot influence one another. |
| 131 | +* Builds cannot persist or influence environment of other builds. |
| 132 | +* Builds cannot inject false entries into a cache used by another build. |
| 133 | +* Services allowing remote influence must be listed as external parameters in provenance. |
| 134 | + |
| 135 | +a|In {ProductName}: |
| 136 | + |
| 137 | +* Only Tekton Chains can access secret materials. |
| 138 | +* Builds run in ephemeral pods. |
| 139 | +* ServiceAccounts (API objects that are shared within projects) have reduced permissions. |
| 140 | +* Tekton Chains generates and signs provenance outside users’ workspaces. |
| 141 | +* External parameters are fully enumerated in provenance. |
| 142 | + |
| 143 | +|=== |
| 144 | + |
| 145 | +== Additional resources |
| 146 | + |
| 147 | +* Learn xref:../how-to-guides/Secure-your-supply-chain/proc_inspect-slsa-provenance.adoc[how to inspect the SLSA] provenance for your components. |
| 148 | +* Visit the link:https://slsa.dev/spec/v1.0/[SLSA overview page], the link:https://slsa.dev/spec/v1.0/levels[Build Levels] page, or the link:https://slsa.dev/spec/v1.0/verifying-systems[verifying build platforms] page. |
0 commit comments