Internal TPM is more secure for attestation. You can MitM the LPC bus with an ex... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

lima on March 5, 2020 | parent | context | favorite | on: Intel x86 Root of Trust: Loss of Trust

Internal TPM is more secure for attestation. You can MitM the LPC bus with an external TPM, faking PCRs.

gruez on March 5, 2020 [–]

>You can MitM the LPC bus with an external TPM, faking PCRs.

not an issue if it's on-die, as the parent suggested.

lima on March 6, 2020 | [–]

You are right, of course. My bad!

Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact