You are viewing a single thread.
View all comments View context
1 point

You can’t do that since vulnerability is the connection between the TPM and the CPU, you need to encrypt that path.

permalink
report
parent
reply
2 points

Pretty sure they meant if you need to keep a persistent public/private pair you can keep them in the tpm and initiate the exchange from there

permalink
report
parent
reply
1 point

That’s correct. I’m guessing if it hasn’t been implemented yet, then there is some technical roadblock I’m currently missing.

permalink
report
parent
reply
2 points

The TPM comes out from the factory with a private key stored in it. The CPU has the public key.

You turn on the laptop for the first time, and the communication between the CPU and the TPM is encrypted from the start.

That’s what I’m referring to. Can’t this be done? I’m guessing it’s not that easy because I’m sure computer designers have already considered this idea.

permalink
report
parent
reply

Technology

!technology@lemmy.world

Create post

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


Community stats

  • 17K

    Monthly active users

  • 12K

    Posts

  • 554K

    Comments