subject:"\[PATCH 6\/7\] tpm2_key_protector\: Support PCR capping"

Re: [PATCH 6/7] tpm2_key_protector: Support PCR capping

2025-07-10 Thread Sudhakar Kuppusamy

> On 8 Jul 2025, at 2:01 PM, Gary Lin via Grub-devel wrote: > > To prevent a sealed key from being unsealed again, a common and > straightforward method is to "cap" the key by extending the associated > PCRs. When the PCRs associated with the sealed key are extended, TPM will > be unable to uns

Re: [PATCH 6/7] tpm2_key_protector: Support PCR capping

2025-07-08 Thread Stefan Berger

On 7/8/25 4:31 AM, Gary Lin wrote: To prevent a sealed key from being unsealed again, a common and straightforward method is to "cap" the key by extending the associated PCRs. When the PCRs associated with the sealed key are extended, TPM will be unable to unseal the key, as the PCR values requ

[PATCH 6/7] tpm2_key_protector: Support PCR capping

2025-07-08 Thread Gary Lin via Grub-devel

To prevent a sealed key from being unsealed again, a common and straightforward method is to "cap" the key by extending the associated PCRs. When the PCRs associated with the sealed key are extended, TPM will be unable to unseal the key, as the PCR values required for unsealing no longer match, eff

Re: [PATCH 6/7] tpm2_key_protector: Support PCR capping

Re: [PATCH 6/7] tpm2_key_protector: Support PCR capping

[PATCH 6/7] tpm2_key_protector: Support PCR capping

3 matches

Site Navigation

Mail list logo

Footer information