Linux 6.10 Adding TPM Bus Encryption & Integrity Protection
![HARDWARE](/assets/categories/hardware.webp)
The TPM device driver changes were already mailed into Linus Torvalds for the Linux 6.10 merge window. The Linux 6.9 stable kernel is expected on Sunday and thus in turn the opening of the v6.10 merge window.
The TPM device driver code is rolling out Trusted Platform Module bus encryption and integrity protection. The key-pair on the TPM side is generated from a null random seed on a per-power-on basis of the system. These additional protections are deemed necessary for the physical security of the system given the recent TPM bus interposer attacks that have been demonstrated.
More details on this Linux TPM encryption and integrity protection via the v6.10 pull request. More background information on the protections is also available from the prior patch series.
8 Comments