[prev in list] [next in list] [prev in thread] [next in thread] 

List:       trousers-users
Subject:    Re: [TrouSerS-users] Unique TPM-id string
From:       Anders Rundgren <anders.rundgren () telia ! com>
Date:       2010-12-02 15:19:22
Message-ID: 4CF7B8FA.7090903 () telia ! com
[Download RAW message or body]

Ariel Segall wrote:
> The EK is certainly the closest thing you'll find to a unique TPM ID;
> it's not *quite* one-to-one with TPMs, but it will be in normal usage.
> 
> That said, whether hashing it is the correct answer for your system
> depends a lot on what your goals are. If you're just looking for an
> identifier with no proof attached? Sure, that's fine. If you're going to
> want to prove that, say, a licensed machine is the one contacting your
> central server, you probably want to use identity keys instead so
> that you can actually sign a response or get a quote about current
> machine state. Identity keys are not unique per TPM, but they *are*
> unique *to* a TPM, and will serve just as well or better for almost all
> applications.

Yes, the EK is "crippled by design" so it can't sign.
Identity keys need to be enrolled however making it an awkward "workaround".

FWIW, I'm pretty sure that Apple in their "MTM" will have a built-in
unique platform credential that indeed can sign when you get the device.
That's a part of GlobalPlatform specification featured in hundreds of millions of SIM-cards.

http://www.smartcardstrends.com/det_atc.php?idu=13258

Anders


> 
>                Ariel
> 
> On 11/26/10 12:59 AM, Evgeny Bronnikov wrote:
>> Hello.
>>
>> I need to get unique TPM ID for implementing software licensing system.
>> Now I use SHA1 digest of public EK. Is it good idea? Are there any
>> other ways to get unique TPM ID?
>>
>> Thanks in advance,
>> Evgeny
>>
>> ------------------------------------------------------------------------------
>> Increase Visibility of Your 3D Game App & Earn a Chance To Win $500!
>> Tap into the largest installed PC base & get more eyes on your game by
>> optimizing for Intel(R) Graphics Technology. Get started today with the
>> Intel(R) Software Partner Program. Five $500 cash prizes are up for grabs.
>> http://p.sf.net/sfu/intelisp-dev2dev
>> _______________________________________________
>> TrouSerS-users mailing list
>> TrouSerS-users@lists.sourceforge.net
>> https://lists.sourceforge.net/lists/listinfo/trousers-users
> 
> 
> ------------------------------------------------------------------------------
> Increase Visibility of Your 3D Game App & Earn a Chance To Win $500!
> Tap into the largest installed PC base & get more eyes on your game by
> optimizing for Intel(R) Graphics Technology. Get started today with the
> Intel(R) Software Partner Program. Five $500 cash prizes are up for grabs.
> http://p.sf.net/sfu/intelisp-dev2dev
> _______________________________________________
> TrouSerS-users mailing list
> TrouSerS-users@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/trousers-users
> 


------------------------------------------------------------------------------
Increase Visibility of Your 3D Game App & Earn a Chance To Win $500!
Tap into the largest installed PC base & get more eyes on your game by
optimizing for Intel(R) Graphics Technology. Get started today with the
Intel(R) Software Partner Program. Five $500 cash prizes are up for grabs.
http://p.sf.net/sfu/intelisp-dev2dev
_______________________________________________
TrouSerS-users mailing list
TrouSerS-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/trousers-users
[prev in list] [next in list] [prev in thread] [next in thread]