TPM & disk crypto
Thor Lancelot Simon
tls at rek.tjls.com
Fri Oct 6 17:29:21 EDT 2006
On Thu, Oct 05, 2006 at 11:51:49PM +0200, Erik Tews wrote:
> Am Donnerstag, den 05.10.2006, 16:25 -0500 schrieb Travis H.:
> > On 10/2/06, Erik Tews <erik at debian.franken.de> wrote:
> > > Am Sonntag, den 01.10.2006, 23:42 -0500 schrieb Travis H.:
> > > > Anyone have any information on how to develop TPM software?
> > > http://tpm4java.datenzone.de/
> > > Using this lib, you need less than 10 lines of java-code for doing some
> > > simple tpm operations.
> >
> > Interesting, but not what I meant. I want to program the chip to verify
> > that the BIOS, boot sector, root partition conform to *my* specification.
> >
> You can do that (at least in theory).
>
> First, you need a system with tpm. I assume you are running linux. Then
> you boot your linux-kernel and an initrd using the trusted grub
> bootloader. Your bios will report the checksum of trusted grub to the
> tpm before giving control to your grub bootloader.
And the TPM knows that your BIOS has not lied about the checksum of grub
how?
Thor
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list