• @[email protected]
    link
    fedilink
    English
    711 months ago

    CPU doesn’t have any secure storage, so it can’t encrypt or authenticate comms to the TPM. The on-CPU fTPMs are the solution, the CPU then has the secure storage.

    • @[email protected]
      link
      fedilink
      English
      211 months ago

      That make sense, CPU has no place to store private keys, since that is the functionality of TPM…

      Unless there is a firmware solution, which defeats the purpose of a standalone tpm.