Remote Attestation
Summary
The article explains remote attestation using TPMs to cryptographically verify a host's boot state, including hardware, firmware, kernel, and root filesystem measurements. It discusses how signed measurements enable stronger trust for workloads and mTLS, the complexity involved, and runtime security implications plus future directions like immutable roots and dm-verity.