Ariel Segall wrote: > The EK is certainly the closest thing you'll find to a unique TPM ID; > it's not *quite* one-to-one with TPMs, but it will be in normal usage. > > That said, whether hashing it is the correct answer for your system > depends a lot on what your goals are. If you're just looking for an > identifier with no proof attached? Sure, that's fine. If you're going to > want to prove that, say, a licensed machine is the one contacting your > central server, you probably want to use identity keys instead so > that you can actually sign a response or get a quote about current > machine state. Identity keys are not unique per TPM, but they *are* > unique *to* a TPM, and will serve just as well or better for almost all > applications.
Yes, the EK is "crippled by design" so it can't sign. Identity keys need to be enrolled however making it an awkward "workaround". FWIW, I'm pretty sure that Apple in their "MTM" will have a built-in unique platform credential that indeed can sign when you get the device. That's a part of GlobalPlatform specification featured in hundreds of millions of SIM-cards. http://www.smartcardstrends.com/det_atc.php?idu=13258 Anders > > Ariel > > On 11/26/10 12:59 AM, Evgeny Bronnikov wrote: >> Hello. >> >> I need to get unique TPM ID for implementing software licensing system. >> Now I use SHA1 digest of public EK. Is it good idea? Are there any >> other ways to get unique TPM ID? >> >> Thanks in advance, >> Evgeny >> >> ------------------------------------------------------------------------------ >> Increase Visibility of Your 3D Game App & Earn a Chance To Win $500! >> Tap into the largest installed PC base & get more eyes on your game by >> optimizing for Intel(R) Graphics Technology. Get started today with the >> Intel(R) Software Partner Program. Five $500 cash prizes are up for grabs. >> http://p.sf.net/sfu/intelisp-dev2dev >> _______________________________________________ >> TrouSerS-users mailing list >> [email protected] >> https://lists.sourceforge.net/lists/listinfo/trousers-users > > > ------------------------------------------------------------------------------ > Increase Visibility of Your 3D Game App & Earn a Chance To Win $500! > Tap into the largest installed PC base & get more eyes on your game by > optimizing for Intel(R) Graphics Technology. Get started today with the > Intel(R) Software Partner Program. Five $500 cash prizes are up for grabs. > http://p.sf.net/sfu/intelisp-dev2dev > _______________________________________________ > TrouSerS-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/trousers-users > ------------------------------------------------------------------------------ Increase Visibility of Your 3D Game App & Earn a Chance To Win $500! Tap into the largest installed PC base & get more eyes on your game by optimizing for Intel(R) Graphics Technology. Get started today with the Intel(R) Software Partner Program. Five $500 cash prizes are up for grabs. http://p.sf.net/sfu/intelisp-dev2dev _______________________________________________ TrouSerS-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/trousers-users
