[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Qemu-devel] [PATCH] hw/misc: Add simple measurement hardware
|
From: |
Matthew Garrett |
|
Subject: |
Re: [Qemu-devel] [PATCH] hw/misc: Add simple measurement hardware |
|
Date: |
Mon, 18 Jul 2016 17:39:07 -0700 |
On Jul 18, 2016 17:08, "Stefan Berger" <address@hidden> wrote:
> The point of the TPM is that the device that holds the state of the PCRs
provides the signatures over their state rather than some other 'entity'
whose trustworthiness wouldn't be clear. Admittedly the device comes with
its own set of challenges.
The hypervisor holds the PCR state and also provides the signature. If the
hypervisor is untrustworthy than the state of the virtualised system can
never be verified, since it could simply have faked the measurements passed
to whatever the root of trust is.
- Re: [Qemu-devel] [PATCH] hw/misc: Add simple measurement hardware, Matthew Garrett, 2016/07/14
- Re: [Qemu-devel] [PATCH] hw/misc: Add simple measurement hardware, Daniel P. Berrange, 2016/07/14
- Re: [Qemu-devel] [PATCH] hw/misc: Add simple measurement hardware, Dr. David Alan Gilbert, 2016/07/15
- Re: [Qemu-devel] [PATCH] hw/misc: Add simple measurement hardware, Stefan Berger, 2016/07/15
- Re: [Qemu-devel] [PATCH] hw/misc: Add simple measurement hardware, Matthew Garrett, 2016/07/18
- Re: [Qemu-devel] [PATCH] hw/misc: Add simple measurement hardware, Stefan Berger, 2016/07/18
- Re: [Qemu-devel] [PATCH] hw/misc: Add simple measurement hardware, Matthew Garrett, 2016/07/18
- Re: [Qemu-devel] [PATCH] hw/misc: Add simple measurement hardware, Stefan Berger, 2016/07/18
- Re: [Qemu-devel] [PATCH] hw/misc: Add simple measurement hardware,
Matthew Garrett <=
- Re: [Qemu-devel] [PATCH] hw/misc: Add simple measurement hardware, Stefan Berger, 2016/07/18
- Re: [Qemu-devel] [PATCH] hw/misc: Add simple measurement hardware, Matthew Garrett, 2016/07/18
Re: [Qemu-devel] [PATCH] hw/misc: Add simple measurement hardware, Matthew Garrett, 2016/07/18