Re: [PATCH 1/4] integrity: TPM internel kernel interface

From: Alan Cox
Date: Tue Aug 12 2008 - 17:55:23 EST

Next message: Mark Langsdorf: "Warning in during hotplug on 2.6.27-rc2-git5"
Previous message: Al Viro: "Re: [RFC] readdir mess"
In reply to: Kenneth Goldman: "Re: [PATCH 1/4] integrity: TPM internel kernel interface"
Next in thread: Kenneth Goldman: "Re: [PATCH 1/4] integrity: TPM internel kernel interface"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Being a TCG/TPM person, I can only address the first question. The
> intent is that the TPM is soldered to the planar/motherboard (the TCG
> uses the phrase "bound to the platform"). I can't imagine
> any manufacturer designing a pluggable TPM. It would subvert PCR
> measurements and thus attestation, data sealing, etc.

So the security limit of your TPM is a soldering iron .. whoo. I'm not
sure this is actually the case however as the secret of interest is in
the TPM so even if I replaced the TPM the goodies already set up are in
the TPM I just unsoldered surely ?

Alan
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Mark Langsdorf: "Warning in during hotplug on 2.6.27-rc2-git5"
Previous message: Al Viro: "Re: [RFC] readdir mess"
In reply to: Kenneth Goldman: "Re: [PATCH 1/4] integrity: TPM internel kernel interface"
Next in thread: Kenneth Goldman: "Re: [PATCH 1/4] integrity: TPM internel kernel interface"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]