Collaborate Disseminate
Is it possible to inspect data (pubkeys, domain names used for webauthn, not private keys) related to private keys stored in the TPM on Windows?
I legally own the hardware and have maximum permissions on my user account
I have the necessa… Continue reading Is it possible to see the pubkeys that pair with private keys inside the TPM in Windows?
I’m interested in using Apple’s Secure Enclave on macOS or TPM on Windows to protect cryptographic keys used by an application from being accessed by other applications running with the same or higher privileges. However, the documentation… Continue reading How can an application, using Apple’s Secure Enclave on macOS or TPM on Windows, protect itself from other applications accessing its private keys?
Do PCRs (Platform Configuration Registers) on TPMs (Trusted Platform Modules) retain their data on reboot?
I’m trying to find out if all (or some) of the PCRs on a TPM are volatile (will loose their memory on power loss) or nonvolatile (wi… Continue reading Are TPM PCRs volatile, non-volatile, or both?
What was the first processor that Intel released that supported Boot Guard?
Intel Boot Guard provides mechanisms to authenticate the firmware on the system at boot-time. Unfortunately, I could find very little information about the history… Continue reading When did Intel release Boot Guard? [closed]
Google Cloud, AMD and Intel collaborated on a roundtable to discuss the past, present and future of confidential computing.
The post Google Cloud looks forward to confidential computing but eyes hardware changes appeared first on TechRepublic.
Continue reading Google Cloud looks forward to confidential computing but eyes hardware changes
I want to know the use cases of DAA (Direct Anonymous Attestation) in the real world.
Continue reading Is there any use case of DAA (Direct Anonymous Attestation) in TPM?
There are different scenarios when it’s about secure computation/storage on mobile devices, e.g., "REE only", "REE + TEE", or "REE + SE" or "REE + TEE + SE".
REE – Real Execution Environment, i.e. de… Continue reading How to distribute Android mobile app functionality between OS, Trusted Execution Environment (TEE) and Secure Element (SE)?
I’ve been pondering some potential cybersecurity applications for enclaves. One of them being the problem of password hashing.
Some clients have enclave support, meaning part of their CPU can securely execute code in an encrypted and authe… Continue reading Practicality of outsourcing password hashing using enclaves
At some point, you will find yourself asking – is my device actually running the code I expect it to? [bunnie] aka [Andrew Huang] is passionate about making devices you …read more Continue reading Here’s How The Precursor Protects Your Privacy
I just started to work with keys from TPM 2.0 and I was wondering how can I assign the EK key only to the admin
Continue reading How can you be sure that only an admin can use the EK?