On 1/3/2017 7:17 PM, Jason Gunthorpe wrote: > > Well, by policy you mean 'know the owner password' which at least I am > *very* nervous about exposing beyond the super user - certainly in my > embedded systems.
For TPM 2.0, the "owner" is mostly just the controller of the storage hierarchy. It's not a "super user", and is less privileged that even the TPM 1.2 owner. For example, the TPM 2.0 owner cannot run TPM2_Clear. ------------------------------------------------------------------------------ Developer Access Program for Intel Xeon Phi Processors Access to Intel Xeon Phi processor-based developer platforms. With one year of Intel Parallel Studio XE. Training and support from Colfax. Order your platform today. http://sdm.link/xeonphi _______________________________________________ tpmdd-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/tpmdd-devel
