On Thu, Feb 16, 2012 at 06:43:01AM +0000, Yang, Xiao (Linux) wrote: > Hi All, > > Does there exist any TSS API to decrypt cipher-text? > Assuming given generated RSA key by Tspi_Key_CreateKey(), and given > cipher-text encrypted by public key or that RSA key-pair. > > I looked at the TSS API: Tspi_Hash_VerifySignature(). > However, I guess this API only will decrypt with PUBLIC KEY, not PRIVATE key, > since it invokes RSA_public_decrypt() underlying. > > Does that mean I have no APIs to use if I want to decrypt by PRIVATE keys? > Please anyone know anything about this give me a feedback. Thanks in advance > so~~ much! > > > Best Regards > Edward.Yang (#7023)
The TPM is designed so that you cannot obtain the private part of a TPM key. Any decryption operations you want to do with the private part of a TPM key have to be done on the TPM itself. Functions such as Tspi_Data_Unbind and Tspi_Data_Unseal can decrypt data, while Tspi_Key_LoadKey can unwrap (decrypt) another key. ------------------------------------------------------------------------------ Virtualization & Cloud Management Using Capacity Planning Cloud computing makes use of virtualization - but cloud computing also focuses on allowing computing to be delivered as a service. http://www.accelacomm.com/jaw/sfnl/114/51521223/ _______________________________________________ TrouSerS-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/trousers-users
