How to add new application/ code into trusted computing base in linux? or How to bind new command for IMA-measurement at boot time in Ubuntu? (0 Replies)
I wanted to do an "Alternate Disk Migration" via my NIM server to update several clients (all LPARs in a p670) from 5.1 ML6 to 5.2 ML3. As a prerequisite the procedure says "if the system has the Trusted Computing Base enabled it has to be switched off before".
Well, i didn't give this too much... (3 Replies)
About a year ago, a friend of mine who worked on the OReilly Snort book took a propsal he and I had worked on for a book on Trusted Computing. Though the editor thought the content was good and worthwhile, he felt that there wasn't enough of a market to justify printing such a work.
How many... (0 Replies)
Tspi_DAA_IssueCredential(3) Library Functions Manual Tspi_DAA_IssueCredential(3)
TCG Software Stack Developer's Reference
NAME
Tspi_DAA_IssueCredential - issue a DAA credential for a TCG platform
SYNOPSIS
#include <tss/tss_typedef.h>
#include <tss/tss_structs.h>
#include <tss/tspi.h>
TSPICALL Tspi_DAA_IssueCredential(
TSS_HDAA hDAA,
UINT32 attributesIssuerLength,
BYTE** attributesIssuer,
TSS_DAA_CREDENTIAL_REQUEST credentialRequest,
TSS_DAA_JOIN_ISSUER_SESSION joinSession,
TSS_DAA_CRED_ISSUER* credIssuer
);
DESCRIPTION
Tspi_DAA_IssueCredential is part of the DAA Issuer component. It's the last function out of 2 in order to issue a DAA Credential for a TCG
Platform. It detects rogue TPM according to published rogue TPM DAA keys. This is an optional function and does not require a TPM or a
TCS.
PARAMETERS
hDAA
The hDAA parameter is used to specify the handle of the DAA object.
attributesIssuerLength
The attributesIssuerLength parameter is the length of the attributesIssuer array, which is determined by the DAA Issuer public key (li).
The length of a single attribute is if/8.
attributesIssuer
The attributesIssuer parameter is the array of attributes to be encoded into the DAA Credential visible to the DAA Issuer .
credentialRequest
The credentialRequest parameter is the credential request of the Platform, it contains the blinded DAA public key of the platform on which
the DAA Issuer will issue the credential the blinded attributes chosen by the Platform.
joinSession
The joinSession parameter is the structure containing the DAA Join session information.
credIssuer
The credIssuer parameter is the structure containing the DAA Credential issued by the DAA Issuer, the proof of correctness of the creden-
tial and the attributes chosen by the DAA Issuer.
RETURN CODES
Tspi_DAA_IssueCredential returns TSS_SUCCESS on success, otherwise one of the following values is returned:
TSS_E_BAD_PARAMETER
TSS_E_INTERNAL_ERROR
An internal SW error has been detected.
TSS_E_DAA_AUTHENTICATION_ERROR
The authentication proof of the TPM is incorrect.
TSS_E_DAA_PSEUDONYM_ERROR
The TPM is rogue.
TSS_E_DAA_CREDENTIAL_REQUEST_PROOF_ERROR
The proof of the credential request is incorrect.
CONFORMING TO
Tspi_DAA_IssueCredential conforms to the Trusted Computing Group Software Specification version 1.2
SEE ALSO Tspi_DAA_IssuerKeyVerification(3)TSS 1.2 2006-09-04 Tspi_DAA_IssueCredential(3)