Collaborate Disseminate
The following two CPUs listed here both have TrustZone.
From a high level, could someone post a comparison list with the difference between the features TrustZone offers in each of them? Such as whether one does something in an improved wa… Continue reading TrustZone in Exynos CPU [closed]
The following two CPUs listed here both have TrustZone.
From a high level, could someone post a comparison list with the difference between the features TrustZone offers in each of them? Such as whether one does something in an improved wa… Continue reading TrustZone in Exynos CPU [closed]
The following two CPUs listed here both have TrustZone.
From a high level, could someone post a comparison list with the difference between the features TrustZone offers in each of them? Such as whether one does something in an improved wa… Continue reading TrustZone in Exynos CPU [closed]
I’ve also checked with systemd-analyze pcrs if PCRs are the same at every reboot, and they are.
Only at first reboot I don’t know why the only PCRs that change are 8,9,10 lol(I don’t know why)… but in next reboots they are always the sam… Continue reading Why is my TPM bugged? If I enable checks on PCR 8,9,10, it ALWAYS asks for decryption password even if it shouldn’t [migrated]
In my laptop I’ve set up a bios password when I power on the laptop, and once I enter it the laptop starts my linux distro and decrypts the disk without asking any other password. To do this I’ve set up TPM to automatically decrypts the di… Continue reading Why the TPM PCRs does not consider a UEFI settings change? If someone resets CMOS, it’s undetected
I have a remote client A which wants to communicate securely with a server B having a discrete TPM. My understanding is that each TPM normally come with a endorsement key from manufacture like Infineon. Therefore, client A can validate cli… Continue reading How to wrap/unwrap with TPM2 endorsement key
I have a remote client A which wants to communicate securely with a server B having a discrete TPM. My understanding is that each TPM normally come with a endorsement key from manufacture like Infineon. Therefore, client A can validate cli… Continue reading How to wrap/unwrap with TPM2 endorsement key
Is it possible to inspect data (pubkeys, domain names used for webauthn, not private keys) related to private keys stored in the TPM on Windows?
I legally own the hardware and have maximum permissions on my user account
I have the necessa… Continue reading Is it possible to see the pubkeys that pair with private keys inside the TPM in Windows?
I’m interested in using Apple’s Secure Enclave on macOS or TPM on Windows to protect cryptographic keys used by an application from being accessed by other applications running with the same or higher privileges. However, the documentation… Continue reading How can an application, using Apple’s Secure Enclave on macOS or TPM on Windows, protect itself from other applications accessing its private keys?
Do PCRs (Platform Configuration Registers) on TPMs (Trusted Platform Modules) retain their data on reboot?
I’m trying to find out if all (or some) of the PCRs on a TPM are volatile (will loose their memory on power loss) or nonvolatile (wi… Continue reading Are TPM PCRs volatile, non-volatile, or both?