Abstract
This chapter describes the Trusted Platform Module (TPM) Command Suite that supports the management of Platform Configuration Registers (PCRs). It is noted that there are three commands—TPM__PcrRead, TPM_Extend, and TPM_Quote—that deal directly with PCRs, and support the functionality such as read, modify, and validate. The TPM_Extend command is a support mechanism that allows for the modification of PCR digest in conjunction with valid system configuration updates. It is important to acknowledge that the TPM_Extend and TPM_SHA1CompleteExtend commands should only be used if one is completely aware of the host system configuration security architecture. The TPM__PcrRead command involves the reading of PCR digest in an effort to interrogate specific content. The TPM_Quote involves the validation of one or more PCR digest existing within the TPM at any given point in time. It signs the selected PCR digest in an effort to validate the digests existing within the TPM.
Published Version
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call