Read e-book online A Practical Guide to TPM 2.0: Using the Trusted Platform PDF

By Will Arthur, David Challener, Kenneth Goldman

ISBN-10: 1430265833

ISBN-13: 9781430265832

A realistic advisor to TPM 2.0: utilizing the relied on Platform Module within the New Age of safeguard is a straight-forward primer for builders. It exhibits defense and TPM recommendations, demonstrating their utilization in actual functions that the reader can try out out.

Simply positioned, this e-book is designed to empower and excite the programming neighborhood to head out and do cool issues with the TPM. The method is to ramp the reader up quick and preserve their curiosity. a pragmatic consultant to TPM 2.0: utilizing the relied on Platform Module within the New Age of safety explains defense strategies, describes TPM 2.0 structure, and gives coding examples in parallel starting with extremely simple suggestions and easy code to hugely advanced strategies and code.

The publication comprises entry to a dwell execution setting (secure, hosted virtualization) and genuine code examples to get readers up and speaking to the TPM speedy. The authors then aid the clients extend on that with genuine examples of necessary apps utilizing the TPM.

Show description

Read Online or Download A Practical Guide to TPM 2.0: Using the Trusted Platform Module in the New Age of Security PDF

Best security books

Download e-book for iPad: Digital Evidence and Computer Crime: Forensic Science, by Eoghan Casey

Electronic facts and desktop Crime, 3rd variation presents the information essential to discover and use electronic facts successfully in any type of research. The widely-adopted first and moment versions brought millions of scholars to this box and helped them take care of electronic facts. This thoroughly up to date variation offers the introductory fabrics that new scholars require, and likewise expands at the fabric offered in past variations to aid scholars enhance those talents.

Get UMTS Security PDF

The capitalist version was once built within the nineteenth century and up to date occasions have proven the problems of adapting this to the calls for of the twenty first century, within which human and social capital are of some distance better value than actual capital. In Going off the Rails, John Plender indicates how company scandals, inflated boardroom pay, company governance disciplines and superseded accountancy conventions have stretched the Anglo-American version to its restrict and what the results of this would be on globalisation and the capital markets.

Download e-book for kindle: Information Security and Privacy: 12th Australasian by Steve Babbage, Carlos Cid, Norbert Pramstaller, Håvard

This ebook constitutes the refereed complaints of the twelfth Australasian convention on info protection and privateness, ACISP 2007, held in Townsville, Australia in July 2007. The 33 revised complete papers provided have been conscientiously reviewed and chosen from 132 submissions. The papers are prepared in topical sections on circulate ciphers, hashing, biometrics, mystery sharing, cryptanalysis, public key cryptography, authentication, e-commerce, and safeguard.

Additional resources for A Practical Guide to TPM 2.0: Using the Trusted Platform Module in the New Age of Security

Example text

The next section considers an application that was written using TSS to take advantage of advanced TPM functions. Wave Systems Embassy Suite Wave Systems has written software to a TPM-specific interface, rather than to a higher-level interface such as PKCS #11. It needed to be done that way, to take advantage of the TPM’s attestation capabilities. Because these capabilities aren’t addressed in any other crypto-coprocessor, they aren’t available in standard interfaces such as PKCS #11. Wave Systems uses the TCG TSS interface implemented in TrouSerS to talk to the TPM, manage the TPM owner password, create attestation identity keys (AIKs), and attest to those values via a standard called Trusted Network Connect, which communicates back to an administrative server.

In researching applications that use the TPM, most of the use cases that come quickly to mind are supported by commercial software. However, some obvious use cases for software that uses a TPM, don’t seem to exist in the marketplace. Applications That Should Use the TPM but Don’t In the past few years, the number of web-based applications has increased. Among them are web-based backup and storage. A large number of companies now offer such services, but as far as we are aware, none of the clients for these services let the user lock the key for the backup service to a TPM.

Such an upgrade prevented the TPM from being able to unseal the KEK. Although the random-number backup sufficed for recovery in this case, Microsoft decided it would make more sense for an administrator doing the BIOS upgrade, who already had access to the decrypted data, to have a means to temporarily leave the fulldisk encryption key in the clear while the BIOS upgrade was performed and then reseal it to the TPM’s new PCR values after the BIOS upgrade. It is important to realize that making things easy for the user at a small cost to security (leaving the drive open for the brief time while a BIOS upgrade was taking place) is usually a good tradeoff.

Download PDF sample

A Practical Guide to TPM 2.0: Using the Trusted Platform Module in the New Age of Security by Will Arthur, David Challener, Kenneth Goldman


by Richard
4.5

Rated 4.21 of 5 – based on 4 votes
Posted In CategoriesSecurity