[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [Xense-devel] [Q] about vTPM
- To: "Atsushi SAKAI" <sakaia@xxxxxxxxxxxxxx>, <xense-devel@xxxxxxxxxxxxxxxxxxx>
- From: "Scarlata, Vincent R" <vincent.r.scarlata@xxxxxxxxx>
- Date: Thu, 29 Jun 2006 10:27:35 -0700
- Delivery-date: Thu, 29 Jun 2006 10:28:56 -0700
- List-id: "A discussion list for those developing security enhancements for Xen." <xense-devel.lists.xensource.com>
- Thread-index: AcabQBxpYGFp/t+lTd6CvSUQgEtdygAUkdeg
- Thread-topic: [Xense-devel] [Q] about vTPM
>From: Atsushi SAKAI
>Sent: Wednesday, June 28, 2006 10:51 PM
>Subject: [Xense-devel] [Q] about vTPM
>I have several questions on vTPM implementation on Xen.
>I would be appreciated if you answer the questions.
>1.GVTPM is seems like ideal model of current vTPM implementaion.
> Is this true?
> (for example, securestorege.c is in vtpm_manager)
Certain parts of the implementation are not specific to any model.
Specifically the driver pair that IBM contributed and the common portion
of the vtpm management scripts. However, you are correct in the
observation that the vtpm_managerd contributed by Intel is an
implementations of the GVTPM model.
>2.I think vTPM key functionality is migration of vTPM instance.
> But It seems not implemented. Is this true?
> It seems like the migration key is the builtin HW-TPM function only.
VTPM Migration support in the vtpm_managerd is nearly complete and I
will be submitted to the tree soon.
>3.Currently vTPM implementaion is only ParaVM.
> Is there any plan to support FullVM?
>4.vtpm document(docs/misc/vtpm.txt) is little bit old.
> So the documentation does not infar the Infineon chip.
> I think Infineon chip is supported.
> vTPM: Virtualizing the Trusted Platform Module
>Intel's Presentation on Xen Security
Xense-devel mailing list