Robust, Resilient, Recoverable Internet of Things (RIoT), from Microsoft Research, is an architecture for providing foundational trust services to computing devices. Device Identity Composition Engine (DICE) is an industry hardware/firmware standard that is the foundation on which RIoT is built.
This repository contains a RIoT reference implementation for a DICE Architecture that provides cryptographically strong device identity and device attestation. Together, DICE and RIoT also provide a foundation for device recovery and resiliency (Cyber Resilient Platform Initiative), secure and verifiable updates, data at rest protection (sealing), and a host of other security-critical use cases.
The Device Provisioning Service (DPS) from Azure IoT uses DICE and RIoT for secure device identity and attestation. The DPS X.509-based protocols rely on the cryptographic keys and certificates produced by RIoT and the Root of Trust for Measurement (RTM) provided by DICE in hardware.
For more info on DPS from Azure IoT this is a good place to start.
The RIoT repository is organized as follows:
For more information on DICE, and to learn how you can contribute, we encourage you to check out the DICE Workgroup in the Trusted Computing Group. For questions, comments, or contributions to the RIoT project from MSR, feel free to contact us at [email protected].