https://bugzilla.redhat.com/show_bug.cgi?id=2389097
Bug ID: 2389097
Summary: Review Request: tpm2-totp – Device attestation using
TPM2 and TOTP
Product: Fedora
Version: 42
Hardware: x86_64
OS: Linux
Status: NEW
Component: Package Review
Severity: medium
Assignee: [email protected]
Reporter: [email protected]
QA Contact: [email protected]
CC: [email protected]
Target Milestone: ---
Classification: Fedora
This is a reimplementation of Matthew Garrett's tpmtotp software for TPM 2.0
using the tpm2-tss software stack. Its purpose is to attest the trustworthiness
of a device against a human using time-based one-time passwords (TOTP),
facilitating the Trusted Platform Module (TPM) to bind the TOTP secret to the
known trustworthy system state. In addition to the original tpmtotp, given the
new capabilities of in-TPM HMAC calculation, the tpm2-totp's secret HMAC keys
do not have to be exported from the TPM to the CPU's RAM on boot anymore.
Another addition is the ability to rebind an old secret to the current PCRs in
case a software component was changed on purpose, using a user-defined
password.
Reproducible: Always
--
You are receiving this mail because:
You are on the CC list for the bug.
You are always notified about changes to this product and component
https://bugzilla.redhat.com/show_bug.cgi?id=2389097
Report this comment as SPAM:
https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-spam&short_desc=Report%20of%20Bug%202389097%23c0
--
_______________________________________________
package-review mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
