Hi Bruce, Thank you for your reply. Good to know you've got it to work! I'll also give it a try!
What TPM chip are you using? I'm using a lenovo T530 and I hope mine will just work with your instructions. And just curious, it this a part of the TPM spec or it just happened to work. Thanks! Shu On Tue, Jul 16, 2013 at 6:52 PM, Bruce Lin <[email protected]> wrote: > 于 2013年07月17日 09:10, Shu Zhang 写道: >> Hello trousers users, >> >> I'd like to send a secret securely from a server to a client with TPM >> and make sure only the client with the TPM can get the secret. I >> wonder if something like this would work: >> >> 1. generate and register an RSA key pair on the client's TPM, copy its >> UUID as well as its public key to the server > hi,shu! > I use the trousers not long too. Last time i do something like what you do. > the server just needs the pubkey to encrypt.Use the RSA_public_encrypt > from openssl,and use RSA_padding_add_PKCS1_OAEP to > set 'TCPA' padding before encrypt. And the client use the Tspi_Data_Unbind > to decrypt. > I hope it may help. > Bruce >> 2. when the connection between the client and server is established, >> the server encrypts the secret using the TPM public key, sends the >> encrypted secret and the UUID of the TPM key to the client >> >> 3. the client's TPM loads the TPM key using the UUID and unbinds the >> encrypted secret >> >> I understand Tspi_Data_Unbind can unbind data encrypted with >> Tspi_Data_Bind using the same key, but would it also work with data >> encrypted outside TPM? I'm guessing if the same decryption algorithm >> is used as the encryption, then it would, but I don't know much about >> RSA. >> >> Thank you. >> >> Shu >> >> ------------------------------------------------------------------------------ >> See everything from the browser to the database with AppDynamics >> Get end-to-end visibility with application monitoring from AppDynamics >> Isolate bottlenecks and diagnose root cause in seconds. >> Start your free trial of AppDynamics Pro today! >> http://pubads.g.doubleclick.net/gampad/clk?id=48808831&iu=/4140/ostg.clktrk >> _______________________________________________ >> TrouSerS-users mailing list >> [email protected] >> https://lists.sourceforge.net/lists/listinfo/trousers-users > > > ------------------------------------------------------------------------------ > See everything from the browser to the database with AppDynamics > Get end-to-end visibility with application monitoring from AppDynamics > Isolate bottlenecks and diagnose root cause in seconds. > Start your free trial of AppDynamics Pro today! > http://pubads.g.doubleclick.net/gampad/clk?id=48808831&iu=/4140/ostg.clktrk > _______________________________________________ > TrouSerS-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/trousers-users ------------------------------------------------------------------------------ See everything from the browser to the database with AppDynamics Get end-to-end visibility with application monitoring from AppDynamics Isolate bottlenecks and diagnose root cause in seconds. Start your free trial of AppDynamics Pro today! http://pubads.g.doubleclick.net/gampad/clk?id=48808831&iu=/4140/ostg.clktrk _______________________________________________ TrouSerS-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/trousers-users
