On 11/15/2013 7:01 AM, Ceri Coburn wrote: > > Is it possible to create a binding or signing key that doesn’t require > SRK authorization and only PCR states? I can see that when you create a > new key that you can state that it requires no authorization and only > tie it to PCR values, but it seems you still need the SRK to load the > key into context.
No and yes. No, the SRK is the hierarchy root. In the beginning, you need its authorization to begin loading child keys. However ... Yes, because typically the SRK has a well-known password, 20 bytes of 0x00. ------------------------------------------------------------------------------ DreamFactory - Open Source REST & JSON Services for HTML5 & Native Apps OAuth, Users, Roles, SQL, NoSQL, BLOB Storage and External API Access Free app hosting. Or install the open source package on any LAMP server. Sign up and see examples for AngularJS, jQuery, Sencha Touch and Native! http://pubads.g.doubleclick.net/gampad/clk?id=63469471&iu=/4140/ostg.clktrk _______________________________________________ TrouSerS-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/trousers-users
