Trusted Computing

Posted on 2. June 2020

by

Today I learned about IMA, EVM and TPM on Linux and I feel like Alice tumbling down the rabbit hole.

[ 0.784022] ima: No TPM chip found, activating TPM-bypass!
dmesg | grep TPM

Last time I read about this is ~15 years ago and I simply disabled TPM so far since I only remember the concerns from back then about privacy and the impact it may have on free software related to DRM. TrueCrypt also fuelled this believe.

Turns out that TPM is completely passive and can do a lot for me, especially in combination with UEFI and IMA (Integrity Measurement Architecture) or, in fact, with securing personal credentials and even TOTP.

Yes, I read about the ROCA vulnerability, too!

3 thoughts on “Trusted Computing”

Kromonos says:

2. June 2020 at 19:09

@bekopharm so ein hübsches Ding 🙂

Log in to Reply
Beko Pharm says:

2. June 2020 at 19:12

@kromonos danke….ach du redest von der Hardware 😜

Log in to Reply

Mentions

💬 Nathan

Likes

👍 Martijn 🐖

Leave a Reply Cancel reply

To respond via ActivityPub find this article on the Fediverse by searching for this URL (e.g. in a Mastodon Search field):

Close

🦠 Ad-blocker not detected

Consider installing a browser extension that blocks ads and other malicious scripts in your browser to protect your privacy and security. Learn more.

Stay cool. Stay safe. Use an ad-blocker. Use protection.