docs(threat-model): make measured boot out of scope Add an explicit note that measured boot is out of scope of the threat model. For example, we have no threat related to the secure management of measurements, nor do we list its security benefits (e.g. in terms of repudiation). This might be a future improvement to the threat model but for now just acknowledge it is not considered. Change-Id: I2fb799a2ef0951aa681a755a948bd2b67415d156 Signed-off-by: Sandrine Bailleux <sandrine.bailleux@arm.com>

commit: be8b654649776d11ea65d2208bdb7c45bcf98f2a [log] [tgz]
author: Sandrine Bailleux <sandrine.bailleux@arm.com> Mon May 16 15:10:27 2022 +0200
committer: Sandrine Bailleux <sandrine.bailleux@arm.com> Thu May 19 11:31:39 2022 +0200
tree: f532b237a3300776b6efa5a0a7bbbac177f52c13
parent: 1c7d74eb4ab70551aa52d94bcb73cf1c278abfb7 [diff]
diff --git a/docs/threat_model/threat_model.rst b/docs/threat_model/threat_model.rst
index 86b2134..2e11a94 100644
--- a/docs/threat_model/threat_model.rst
+++ b/docs/threat_model/threat_model.rst

@@ -36,6 +36,9 @@
 - There is no Secure-EL2. We don't consider threats that may come with
   Secure-EL2 software.
 
+- Measured boot is disabled. We do not consider the threats nor the mitigations
+  that may come with it.
+
 - No experimental features are enabled. We do not consider threats that may come
   from them.
commit	be8b654649776d11ea65d2208bdb7c45bcf98f2a	[log] [tgz]
author	Sandrine Bailleux <sandrine.bailleux@arm.com>	Mon May 16 15:10:27 2022 +0200
committer	Sandrine Bailleux <sandrine.bailleux@arm.com>	Thu May 19 11:31:39 2022 +0200
tree	f532b237a3300776b6efa5a0a7bbbac177f52c13
parent	1c7d74eb4ab70551aa52d94bcb73cf1c278abfb7 [diff]