So who knows that key? The processor? Or the operating system? What’s preventing... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

tinus_hn on Nov 18, 2021 | parent | context | favorite | on: TPM Sniffing

So who knows that key? The processor? Or the operating system?

What’s preventing an attacker from changing that key? Or is this just to change the attack from passive to active?

cryptonector on Nov 18, 2021 [–]

The public key has to be known by the BMC, BIOS, OS.

You can read the public key from the TPM. If you're using the endorsement key, it comes with a certificate issued by the vendor.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact