Xen 		  
Home About Xen.org Xen Xen Summit Wiki Mailing List Bug Tracker Xen Downloads
 
   
 

xense-devel

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xense-devel] [Q] about vTPM

from [Martin Hermanowski] [Permanent Link][Original]
To: Ronald Perez <ronpz@xxxxxxxxxx>
Subject: Re: [Xense-devel] [Q] about vTPM
From: Martin Hermanowski <lists@xxxxxxxxxxxxxxxxxxxxxxx>
Date: Sat, 01 Jul 2006 15:42:35 +0200
Cc: xense-devel@xxxxxxxxxxxxxxxxxxx
Delivery-date: Sat, 01 Jul 2006 06:42:47 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
In-reply-to: <OFF3ED205C.736F7EBE-ON8525719D.0048D547-8525719D.0049D692@xxxxxxxxxx>
List-help: <mailto:xense-devel-request@lists.xensource.com?subject=help>
List-id: "A discussion list for those developing security enhancements for Xen." <xense-devel.lists.xensource.com>
List-post: <mailto:xense-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xense-devel>, <mailto:xense-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xense-devel>, <mailto:xense-devel-request@lists.xensource.com?subject=unsubscribe>
Openpgp: id=98A3D1EC
References: <OFF3ED205C.736F7EBE-ON8525719D.0048D547-8525719D.0049D692@xxxxxxxxxx>
Sender: xense-devel-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: Thunderbird 1.5.0.2 (X11/20060516) 
Ronald Perez wrote:
> 
> Martin Hermanowski wrote on 06/30/2006 05:10:24 AM:
> 
>> So there are two different VTPM implementation at the moment? Are there
>> plans to release the one described in the research report?
> 
> Martin,
> 
> I think it would be more accurate to say that there are at least two
> different vTPM implementations for Xen (supporting a diversity of vTPM
> implementations was one of the design points from the beginning).

OK

> While the vTPM implementation described in the IBM research report is
> not available (at least not as open source), we have discussed releasing
> in the past. However, we currently have no plans to do so. We feel that
> version supported by Intel, based on an existing open source TPM
> emulator, should be made adequate for most purposes. If you feel
> differently, please let us know.

One thing that surprised me after reading the report was, that the
current vTPM implementation in xen-testing did not do any measurements
to PCRs, and that it seems like the vTPM is created when the tpm-xen
module is loaded in DomU, and not when the DomU is created.

If I understood the vTPM architecture correctly, this is not
implementation specific (this is only the vtpm_managerd part, right?),
but a Xen issue.

I will try to switch to xen-unstable, to have the latest vTPM
development that's available.

Thanks,
Martin

-- 
Martin Hermanowski
http://martin.hermanowski.name

_______________________________________________
Xense-devel mailing list
Xense-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xense-devel
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xense-devel] tpm_vtpm: tpm_transmit: tpm_send: error 4294967294, Martin Hermanowski
Next by Date:  RE: [Xense-devel] [Q] about vTPM, Scarlata, Vincent R
Previous by Thread:  Re: [Xense-devel] tpm_vtpm: tpm_transmit: tpm_send: error 4294967294, Martin Hermanowski
Next by Thread:  RE: [Xense-devel] [Q] about vTPM, Scarlata, Vincent R
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , XenSource, Inc. All rights reserved. Note: the xen.org trademark policy
is changing. For information please email legalxen.org, Legal and Privacy