• Phoenixz
    link
    fedilink
    English
    1511 months ago

    CPU communicates with TPM in plaintext

    Because of course

    • @[email protected]
      link
      fedilink
      English
      711 months ago

      CPU doesn’t have any secure storage, so it can’t encrypt or authenticate comms to the TPM. The on-CPU fTPMs are the solution, the CPU then has the secure storage.

      • @[email protected]
        link
        fedilink
        English
        211 months ago

        That make sense, CPU has no place to store private keys, since that is the functionality of TPM…

        Unless there is a firmware solution, which defeats the purpose of a standalone tpm.