On 11/12/2014 10:24 PM, David Li wrote: > I think there might be two aspects of the issue. > > My understanding is first the OS reporting PCR values has to be > trustable. It's typically on a separate machine in a secure site or a > specially built kernel image stored on a tamper-proof card that can be > plugged in when necessary.
I'm not aware of that. We (TCG) typically assume that the OS reporting the measurements is not trusted. Hence the need for the TPM. If the OS was trusted to report on itself, there would be no need for a TPM. ------------------------------------------------------------------------------ Comprehensive Server Monitoring with Site24x7. Monitor 10 servers for $9/Month. Get alerted through email, SMS, voice calls or mobile push notifications. Take corrective actions from your mobile device. http://pubads.g.doubleclick.net/gampad/clk?id=154624111&iu=/4140/ostg.clktrk _______________________________________________ TrouSerS-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/trousers-users
