TPM 2.0 requires UEFI boot BIOS or Legacy boot systems can only use TPM 1.2. All software access the TPM through the tcsd daemon. TPM 1.2 uses the "TrouSerS" TSS (TCG software stack) by IBM, which is packaged as trousers AUR ( tcsd) and tpm-tools AUR (userspace).There are two choices of userspace tools, tpm2-tools by Intel and ibm-tss AUR by IBM. According to a systemd project member, using tpm2-abrmd is no longer recommended. TPM 2.0 allows direct access via /dev/tpm0 (one client at a time), kernel-managed access via /dev/tpmrm0, or managed access through the tpm2-abrmd resource manager daemon.There are two very different TPM specifications: 2.0 and 1.2, which also use different software stacks. If your hardware has TPM support but it is not showing up, it might need to be enabled in the BIOS settings. TPM is naturally supported only on devices that have TPM hardware support. In practice a TPM can be used for various different security applications such as secure boot, key storage and random number generation. Trusted Platform Module (TPM) is an international standard for a secure cryptoprocessor, which is a dedicated microprocessor designed to secure hardware by integrating cryptographic keys into devices. (Discuss in Talk:Trusted Platform Module) PCR registers sealing and using in combination with LUKS. Reason: Needs clarification about usage difference between TPM 1.2 and 2.0, Evil Maid attack defense and Trusted boot.
0 Comments
Leave a Reply. |