• Eufalconimorph@discuss.tchncs.de
    link
    fedilink
    English
    arrow-up
    7
    ·
    11 months ago

    CPU doesn’t have any secure storage, so it can’t encrypt or authenticate comms to the TPM. The on-CPU fTPMs are the solution, the CPU then has the secure storage.

    • baseless_discourse@mander.xyz
      link
      fedilink
      English
      arrow-up
      2
      ·
      11 months ago

      That make sense, CPU has no place to store private keys, since that is the functionality of TPM…

      Unless there is a firmware solution, which defeats the purpose of a standalone tpm.