Trusted Boot in Fedora
Przemek Klosowski
przemek.klosowski at nist.gov
Tue Jun 28 21:03:15 UTC 2011
On 06/23/2011 10:21 AM, JB wrote:
> The Intel Trusted Platform consists of two components:
> - Trusted Platform Module (TPM) chip
> A hardware component, consisting of cryptographic processor and secure
> memory.
> - Trusted Boot
> A software component, open-source and partially close-source (?) components,
> in Fedora packages.
Why does the TB require closed-source components? I understand that the
code has to be inalterable, but since it is a small and well-defined
piece of infrastructure it could be crypto-signed once and for all.
Having source code access doesn't give anyone more privileges than a
binary blob.
More information about the devel
mailing list