TCPA not virtualizable during ownership change (Re: Overcoming the potential downside of TCPA)
Adam Back
adam at cypherspace.org
Thu Aug 15 17:44:58 PDT 2002
I think a number of the apparent conflicts go away if you carefully
track endorsement key pair vs endorsement certificate (signature on
endorsement key by hw manufacturer). For example where it is said
that the endorsement _certificate_ could be inserted after ownership
has been established (not the endorsement key), so that apparent
conflict goes away. (I originally thought this particular one was a
conflict also, until I noticed that.) I see anonymous found the same
thing.
But anyway this extract from the CC PP makes clear the intention and
an ST based on this PP is what a given TPM will be evaluated based on:
http://niap.nist.gov/cc-scheme/PPentries/CCEVS-020016-PP-TPM1_9_4.pdf
p 20:
| The TSF shall restrict the ability to initialize or modify the TSF
| data: Endorsement Key Pair [...] to the TPM manufacturer or designee.
(if only they could have managed to say that in the spec).
Adam
--
http://www.cypherspace.org/adam/
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at wasabisystems.com
More information about the cypherpunks-legacy
mailing list