TPM – Page 2 – WindowsTechs.com

Is EVERY time we power on the computer verified that nothing have been tampered via PUF CRP authentication? By which component? Where are CRPs stored?

Posted on July 8, 2024 by AllExJ

Are PUFs used, EVERY time we power on the computer, to verify that nothing have been tampered (by using CRP authentication)?
Which element performs this authentication? (bios, secureboot, I don’t know)?
Where are CRPs stored? In which ele… Continue reading Is EVERY time we power on the computer verified that nothing have been tampered via PUF CRP authentication? By which component? Where are CRPs stored?→

Is PUF Challenge-Response Authentication applied on every power-up event? [closed]

Posted on July 8, 2024 by AllExJ

Are PUFs used, EVERY time we power on the computer to verify that nothing has been tampered with (by using CRP authentication)?
Which element performs this authentication? (bios, secureboot, I don’t know)?
Where are CRPs stored? In which … Continue reading Is PUF Challenge-Response Authentication applied on every power-up event? [closed]→

Advantages of using IAK over EK for attesting purposes on a TPM

Posted on June 1, 2024 by Lemon Sky

I want to use an IoT device’s TPM as a new Intermediate CA. I can prepare the device during manufacturing, and would like to then create new CAs during operation.
Traditionally, one would create an Initial Attestation Key (IAK) on the IoT … Continue reading Advantages of using IAK over EK for attesting purposes on a TPM→

Is it possible to know when my TPM was last used to decrypt my disk?

Posted on May 20, 2024 by deniable_encryption

I use Linux on my laptop and I do Full Disk Encryption with the LUKS keys enrolled into TPM2 against proper PCRs to make sure firmware, UEFI and Secure Boot setup are in a known-good state. Additionally, my TPM setup has a 6-digit PIN with… Continue reading Is it possible to know when my TPM was last used to decrypt my disk?→

How and why can a TPM be used for disk encryption or DRM?

Posted on May 7, 2024 by Nullcaller

I don’t know much about TPMs, and I admittedly don’t know as much about cryptography as I’d like to, though I am quite familiar with basic concepts. For the past two hours I’ve been attempting to improve this situation by trying to gain an… Continue reading How and why can a TPM be used for disk encryption or DRM?→

How to securely store signature file

Posted on April 1, 2024 by Croksie

I am using TPM to to encrypt and sign my data. But since I am not security expert, I need to come to you guys 😀
I am developing this app to verify file content. I already has this part sorted out with TPM. But now comes the tricky part. I… Continue reading How to securely store signature file→

How and who calculate the PCR values?

Posted on March 18, 2024 by JACK GAO

Who is responsible for calculating the Platform Configuration Register (PCR) value? Is the operation system or the TPM?
What if the operating system is hacked? Can the hacked system always calculate the "right" PCR value to fool … Continue reading How and who calculate the PCR values?→

PCR 7 in TPM 2.0 has always the same value

Posted on February 16, 2024 by Blasco

First of all, I must say that I’m using a VM with an emulated TPM 2.0.
I’ve created an LUKS2 encrypted partition and configured the TPM 2.0 to unseal the key only if the PCR 7 has a certain value.
For what I’ve understood so far in the PCR… Continue reading PCR 7 in TPM 2.0 has always the same value→

TPM – How the integrity of the system configuration is guaranteed if the PCR hash is overwritten on each "Measurement"?

Posted on February 7, 2024 by programings

In the TPM architecture, we know that after a "Measurement" procedure is performed, it is followed by a "PCR Extend" procedure, in which the resulting system configuration metrics data (20 bytes) are appended to the val… Continue reading TPM – How the integrity of the system configuration is guaranteed if the PCR hash is overwritten on each "Measurement"?→

Beating Bitlocker in 43 seconds

Posted on February 7, 2024 by Adam Fabio

How long does it take to steal your Bitlocker keys? Try 43 seconds, using less than $10 in hardware. Encrypting your hard drive is good security. If you’re running Windows, …read more Continue reading Beating Bitlocker in 43 seconds→