As I assume, DGX Spark should be architecturally quite similar to Thor devices, which do include HW fuses to lock the device, encrypt the data and authenticate the boot code.
Does DGX Spark itself support any such functionality? If not - is it somewhere on the roadmap?
Hi, I assume you are referencing Jetson Thor meeting automotive strict safety ISO and security, such as PSC, Secure Boot, OTP fuses, CC, etc?
While Spark and Thor both feature robust security, they are designed for different use cases and do not have the same security features.
Thor is mission critical soc for autos and robotics. Spark is a desktop ai supercomputer for dev.
Mostly about the generic intellectual property protection, not necessary automotive safety/security.
On Thor devices, I could have an encrypted disk that only the device itself could decrypt, since encryption key is derived from the hardware fuses on the SoC. This basically allows to deploy your code to the device, and then give device for a third-party to use, without this third-party being able to extract or copy the embedded IP.
But there are use cases where a “generic computer” form-factor of the DGX Spark is more convenient for the job than embedded SoC or devkit form-factor of the Thor. So I’m wondering whether it is possible to apply the same concepts to the DGX Spark device, and whether this is officially supported.
You may want to consider TCG Opal via sedutil.. Spark storage device itself implements TCG Opal (SED). Support is a property of the SSD firmware.
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.