Hello,
I am working on the ATMEL TPM(1.2) device on an embedded platform.
I wanted to test the attestation feature of TPM to certify an RSA key pair.
This is what I have understood :
I can use the Tspi_TPM_CollateIdentity_Request() API to tell the TPM to
create a AIK for me.
This API returns a certificate request structure(public AIK + Endorsement
credential of my TPM) encrypted with the public key of the Privacy CA. I
need to send this to the Privacy CA so that the Privacy CA can issue a
credential for my AIK.The reply from the Privacy CA will be encrypted by
the public EK of my TPM. The encrypted blob I have to pass it to
Tspi_TPM_ActivateIdentity() to get the credential.
I have a very basic doubt. Who will behave as the Privacy CA in this case?
Do I have to create my own CA?
Also, how do I send the output of Tspi_TPM_CollateIdentity_Request() to the
PrivacyCA, as in what protocol is to be followed for the communication
between the TPM and PrivacyCA?
I am newbie and any help would be highly appreciated.
Thanks and Regards,
Pritha Ganguly
------------------------------------------------------------------------------
Announcing the Oxford Dictionaries API! The API offers world-renowned
dictionary content that is easy and intuitive to access. Sign up for an
account today to start using our lexical data to power your apps and
projects. Get started today and enter our developer competition.
http://sdm.link/oxford
_______________________________________________
TrouSerS-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/trousers-users
