Stack Overflow
Stack Overflow

Questions tagged [tpm]

A Trusted Platform Module (TPM) is a secure coprocessor found in some PC-type computers that provides cryptographic operations and system integrity measurements.

The Trusted Platform Module is a secure cryptoprocessor defined by the Trusted Computing Group. It performs platform measurements that an operating system can use to ensure platform integrity, thus implementing a form of secure boot. The TPM also implements some common cryptographic algorithms. Each TPM contains a unique key and can therefore be used to authenticate the platform and to encrypt data that will not be decryptable without that particular TPM.

TrouSerS is an open-source TCG software stack (a TPM API). Microsoft's Bitlocker on Windows Vista and above leverages the TPM when present.

293 questions
4
votes
1 answer

How does the Trusted Platform Module generate its true random numbers?

So far I know that the TPM is using thermal noise for generating true random numbers. But I'm also sure that the TPM uses more sources for the entropy. In that that keystroke timings, drive seek time, or clock jitter would be possibilities. But…
nummer92
  • 41
  • 1
  • 4
4
votes
2 answers

Sealing Data using TPM In Windows

I'd like to perform a TPM Seal operation in windows. I'm familiar with C++ programming but have no idea what libraries I'd even use. I'm currently stuck with the following two questions: Can I perform this action using e.g. WMI and a powershell…
Yablargo
  • 3,520
  • 7
  • 37
  • 58
4
votes
1 answer

installing trousers for tpm emulator

I have installed tpm emulator successfully. I get this error * Starting Trusted Computing daemon tcsd /etc/init.d/trousers: 32: [: /dev/tpm: unexpected operator [fail] invoke-rc.d: initscript trousers, action "start" failed. dpkg: error…
user3341303
  • 41
  • 1
  • 2
4
votes
1 answer

How to extend the running application into PCR?

How to extend the running application into PCR? and Which PCR can be used for it?
Geek
  • 363
  • 1
  • 7
  • 14
3
votes
1 answer

How to find a free TPM handle for saving a new key pair object?

I am new to TPM and currently working on a project that involves generating and storing serveral key pairs using tpm. I would like to know how to find an available TPM handle that can be used to save a new key pair object. I have searched for…
Alireza Delkhahi
  • 33
  • 4
3
votes
1 answer

Is it possible to bind a TPM key to a specific application

I'm just starting to learn about TPMs and was wondering if it's possible to restrict a signing key to a particular application? The idea being that only the application that created the key may use it to encrypt/decrypt data. I believe there is…
smith324
  • 13,020
  • 9
  • 37
  • 58
3
votes
1 answer

Storing key securely using TPM2

I'm working on an embedded system running linux for embedded. The HW has TPM chip. I've made some preparations, I installed the tpm2-tss and tpm2-tools sw libs and I've test them by hashing some data with the TPM. Its worked. The system is…
Brave
  • 159
  • 11
3
votes
2 answers

CryptoNextGeneration : Storing a key in the TPM

I am currently working on a small sample program using Crypto Next Generation (Windows Crypto API) to generate a key, store it in the TPM on my computer, encrypt some data and then retrieve it and decrypt the data. My choice of RSA encryption is…
nbstrong
  • 115
  • 1
  • 10
3
votes
1 answer

Can libcurl use tpm2-tss-engine for TLS connexions?

I have not found documentation about how in the below code taken from official website of libcurl, can I plug tpm2-tss-engine so that the private key is in the TPM. As an example, it's possible to plug tpm2-tss-engine to openssl. CURL *curl =…
mistergreen
  • 109
  • 8
3
votes
0 answers

How to deploy tpm2-tools in a docker container

I'm trying to deploy a TPM service inside a docker container following the instructions detailed in https://github.com/vchatterji/tpm2-luks (this process perfectly worked for me on a virtual machine with Ubuntu 18.04 installed). Everything works…
abh95
  • 31
  • 2
3
votes
1 answer

TPM Non-Volatile Memory Size?

I am using IBM TPM v1332 + IBM TSS v1470 now and trying to store some essential keywords/passwords to non-volatile memory on TPM. I found two ways to do so. One is to create a sealed object and use evictcontrol to store it,…
DaveW
  • 63
  • 1
  • 5
3
votes
2 answers

TPM alternative to securely store encription key inside a system

I need to deploy a server containing very sensitive data. More precisely, this (linux) server will be deployed on a van full of antennas spinning arround the world, and i need to prevent data leaks even in case of an untrusted van operator that will…
Umberto
  • 75
  • 2
  • 6
3
votes
1 answer

Idiomatic way to encrypt data from an Azure IoT Edge Module?

I have a pair of IoT Edge modules, one which saves data and one which uploads data. I would like to encrypt the data while it is at rest on the device. There are many ways I could go about encrypting this data, but I would like to know what the most…
Hammatt
  • 71
  • 2
  • 7
3
votes
1 answer

Clearing TPM without owner password

I want to use BeagleBone Black with TPM enabled through CryptoCape. I am following this tutorial in a way I can clear the TPM, because of its compliance mode. When I run tpm_clear -l debug I get a prompt to enter the owner password, which I do not…
Dalton Cézane
  • 3,672
  • 2
  • 35
  • 60
3
votes
0 answers

TPM - Put my own private & public key inside the tpm

In the TPM I can generate an SRK (Storage Root Key) that will be stored on the chip. This key will be used to wrap and protect other keys (not stored on the TPM). Let's say I don't trust the chip in the key generation process, is there any way to…
b3nj1
  • 667
  • 1
  • 6
  • 17
1
2
3
19 20