Welcome to my blog.
Posts
Attesting to the TPM's Firmware
Murphy’s Law says: Anything that can go wrong will go wrong. Unfortunately, TPMs fall into the category of “anything.”
BitLocker is Designed to Have This Problem
The purpose of a system is what it does 1. The purpose of BitLocker is to generate articles about interposer attacks.
sequenceDiagram participant host as Host system actor interposer as interposer participant tpm as TPM loop Boot host->>tpm: Measure some software into PCRs end host->>tpm: Load a sealed blob with PCR policy P host->>tpm: Satisfy P with PolicyPCR in policy session S1 note right of tpm: Assert that PCRs are as required by P rect rgb(255, 127, 127) host->>tpm: Unseal the key using S1 end note left of host: Decrypt disk and boot note right of interposer: Decrypt disk and
post on HackerNewsThe Brick Test
I’d like to propose a simple test for any definition of security success: the Brick Test.
TPM Carte Blanche-resistant Boot Attestation
TPM Carte Blanche
subscribe via RSS