With Linux 4.4, TPM 2.0 Gets Into Shape For Distributions
Intel and others have been working on TPM 2.0 support for a while and initial support landed for Linux 4.0. However, with Linux 4.4 the work is becoming more suitable for those interested in this new version of Trusted Platform Module.
Jarkko Sakkinen sent out TPM2 updates for 4.4 in gearing up for the Linux 4.4 merge window that will start within a few weeks. He wrote, " This patch set enables distributions to start production of for TPM 2.0. Next steps after this is to add policy based sealing for trusted keys and algorithmic agility."
New to the Linux 4.4 TPM 2.0 code are two critical bug fixes, PPI support, and basic trusted keys with authentication value and SHA256 for keyed hash. PPI is short for the Physical Presence Interface. PPI is explained as, "The Physical Presence Interface utilizes the industry-standard Advanced Configuration and Power Interface (ACPI) to provide a communication mechanism between the OS and the BIOS, enabling the OS and the BIOS to cooperate to provide a simple and straightforward platform user experience for administering the TPM without sacrificing security."
Those wondering about other changes with TPM 2.0 can see the information on Wikipedia.