Content deleted Content added
No edit summary |
Zeroandones (talk | contribs) mNo edit summary |
||
Line 33:
Privacy concerns with the TCG revolve around the fact that each TPM has a unique keypair, called the "endorsement key", that identifies the platform. In initial versions of the TPM (version 1.1), the TCG addressed privacy concerns by suggesting the use of a "Privacy CA" that could certify [[pseudonymity|pseudonymous]] machine credentials. By having separate credentials for interacting with different parties, actions could not be linked, and so some level of privacy is provided. However, this requires trust in the Privacy CA, who could still link pseudonyms to the common, identifying machine credential. Since this left unresolved privacy concerns, version 1.2 of the TPM specification introduced "[[Direct anonymous attestation]]": a protocol based on the idea of a [[zero-knowledge proof]] which allows a TPM user to receive a certification in such a way that the Privacy CA would not be able to link requests to a single user or platform, while still being able to identify rogue TPMs.
Privacy concerns for TPM were heighten when [[Christopher Tarnovsky's]] presentation ["Deconstructing a Secure Processor" at [[Black Hat]] 2010]. [[Christopher Tarnovsky]] presented methods to access and compromise the Infineon TPM non-volatile memory capacity which contains user data.--[[User:Zeroandones|Zeroandones]] ([[User talk:Zeroandones|talk]]) 13:43, 9 February 2010 (UTC)
==[[ISO]] Standardization efforts ==
Line 218 ⟶ 220:
* [http://www.gnu.org/philosophy/can-you-trust.html "Can you trust your computer?"] by [[Richard Stallman]], from the [[GNU Project]] website
* [http://www.cl.cam.ac.uk/~rja14/tcpa-faq.html Trusted Computing FAQ] by [[Ross J. Anderson (professor)|Ross Anderson]]
* [https://media.blackhat.com/bh-dc-10/video/Tarnovsky_Chris/BlackHat-DC-2010-Tarnovsky-DeconstructProcessor-video.m4v] by {{Christopher Tarnovsky]] from [[Flylogic.net]]
[[Category:Trusted computing]]
| |||