A Practical Guide to TPM 2.0_ Using the New Trusted Platform Module in the New Age of Security.pdf

(5216 KB) Pobierz

For your convenience Apress has placed some of the front

matter material after the index. Please use the Bookmarks

and Contents at a Glance links to access them.

Contents at a Glance

About the Authors�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

xxi

About the Technical Reviewers �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

xxiii

Acknowledgments �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½xxv

Introduction �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½xxvii

■

Chapter 1: History of the TPM �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

■

Chapter 2: Basic Security Concepts �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

■

Chapter 3: Quick Tutorial on TPM 2�½0 �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

■

Chapter 4: Existing Applications That Use TPMs �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

■

Chapter 5: Navigating the Specification �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

■

Chapter 6: Execution Environment �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

■

Chapter 7: TPM Software Stack�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

■

Chapter 8: TPM Entities �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

■

Chapter 9: Hierarchies �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

105

■

Chapter 10: Keys �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

119

■

Chapter 11: NV Indexes �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

137

■

Chapter 12: Platform Configuration Registers�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

151

■

Chapter 13: Authorizations and Sessions�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

163

■

Chapter 14: Extended Authorization (EA) Policies �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

217

■

Chapter 15: Key Management �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

249

■

Contents at a GlanCe

■

Chapter 16: Auditing TPM Commands �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

263

■

Chapter 17: Decrypt/Encrypt Sessions �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

271

■

Chapter 18: Context Management �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

289

■

Chapter 19: Startup, Shutdown, and Provisioning�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

301

■

Chapter 20: Debugging �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

311

■

Chapter 21: Solving Bigger Problems with the TPM 2�½0 �½�½�½�½�½�½�½�½�½�½�½�½

323

■

Chapter 22: Platform Security Technologies

That Use TPM 2�½0 �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

331

Index �½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½�½

349

Introduction

“Seminal!”

“Riveting! I couldn’t put it down until the last page.”

“I’m exhausted from reading this book! It kept me up three nights in a row. Where’s

my Ambien when I need it?”

“The suspense was killing me. I just

had

to read it straight through!”

Although these responses to our book would be gratifying, it’s doubtful that any book

on digital security will ever garner this type of reaction. Digital security is the computer

equivalent of disaster insurance. Few people care very much about it or give it much

thought, and everyone hates paying for it … until a catastrophe hits. Then we are either

really glad we had it or really sad that we didn’t have enough of it or didn’t have it at all.

We may sound like Chicken Little crying the “the sky is falling, the sky is falling,”

but mark our words: a digital security catastrophe is headed your way. We could quote

a plethora of statistics about the rising occurrence of digital security threats, but you’ve

probably heard them, and, quite frankly, you don’t care, or at least you don’t care enough.

It’s questionable whether any preaching on our part will make you care enough until

you’re personally impacted by such a calamity, but we’ll try anyway.

When your reputation is tarnished, your finances are impacted, your identity is

stolen, your physical well-being is threatened, your company’s reputation and finances

are harmed, and, quite possibly, your country is overthrown, then you’ll wake up to the

need for cyber security. But it might be too late then. Like people living in a flood zone,

the question isn’t whether the flood is coming, but rather when the disaster will hit and

whether you’ll be prepared for it. The time to buy digital-security flood insurance is now!

Don’t wait until the flood hits.

A Practical Guide to TPM 2.0

can be part of your digital-security insurance policy.

The TPM was designed as one of the core building blocks for digital security solutions. The

November 2013 “Report to the President: Immediate Opportunities for Strengthening the

Nation’s Cybersecurity” recommends “the universal adoption of the Trusted Platform

Module (TPM), an industry-standard microchip designed to provide basic security-

related functions, primarily involving encryption keys, including for phones and tablets.”

Computers and devices that incorporate a TPM are able to create cryptographic keys and

encrypt them so they can be decrypted only by the TPM. A TPM provides this limited

but fundamental set of capabilities that higher layers of cybersecurity can then leverage.

Today, TPMs are present in many laptop and desktop personal computers. They’re used

by enterprises for tasks like secure disk encryption, but they have yet to be incorporated

to any significant extent in smartphones, game consoles, televisions, in-car computer

systems, and other computerized devices and industrial control systems. This needs to

happen for such devices to be trustworthy constituents of the increasingly interconnected

device ecosystem.

xxvii

Plik z chomika:

jacek_040

Inne pliki z tego folderu:

Exploiting Web-Based Applications - FREE Video Training Course PART 1.rar (506812 KB)
Exploiting Web-Based Applications - FREE Video Training Course PART 2.rar (933817 KB)
50 Android Hacks.pdf (3465 KB)
50 Reasons For Mastering Penetration Testing.azw3 (171 KB)
610.1 - Malware Analysis Fundamentals.pdf (31650 KB)

A Practical Guide to TPM 2.0_ Using the New Trusted Platform Module in the New Age of Security.pdf

Plik z chomika:

Inne pliki z tego folderu:

Inne foldery tego chomika: