[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xense-devel] [Q] about vTPM

To: Atsushi SAKAI <sakaia@xxxxxxxxxxxxxx>
From: Stefan Berger <stefanb@xxxxxxxxxx>
Date: Thu, 29 Jun 2006 07:31:41 -0400
Cc: xense-devel@xxxxxxxxxxxxxxxxxxx
Delivery-date: Thu, 29 Jun 2006 04:31:53 -0700
List-id: "A discussion list for those developing security enhancements for Xen." <xense-devel.lists.xensource.com>

xense-devel-bounces@xxxxxxxxxxxxxxxxxxx wrote on 06/29/2006 01:50:38 AM: > I have several questions on vTPM implementation on Xen. > I would be appreciated if you answer the questions.

As you show at the end of your email, there are different ideas about the virtual TPM. IBM's contribution to the Xen repository are the split TPM drivers, vTPM managment scripts and test cases. We have our own virtual TPM implementation as described in the research report, but it is not freely available.
> > 1.GVTPM is seems like ideal model of current vTPM implementaion. > Is this true? > (for example, securestorege.c is in vtpm_manager) > > 2.I think vTPM key functionality is migration of vTPM instance. > But It seems not implemented. Is this true? > It seems like the migration key is the builtin HW-TPM function only. > > 3.Currently vTPM implementaion is only ParaVM. > Is there any plan to support FullVM?

This is likely to be done in the future.

> > 4.vtpm document(docs/misc/vtpm.txt) is little bit old. > So the documentation does not infar the Infineon chip. > I think Infineon chip is supported.

Thanks. I will update the document. Although it explicitly mentions some manufacturer's TPMs, it does not mean that the vTPM implementation does not work with other TPMs where drivers are available.
> > Related Links > vTPM: Virtualizing the Trusted Platform Module > http://domino.research.ibm.com/library/cyberdig. > nsf/1e4115aea78b6e7c85256b360066f0d4/a0163fff5b1a61fe85257178004eee39? > OpenDocument&Highlight=0,RC23879 > > Intel's Presentation on Xen Security > http://www.xensource.com/files/XenSecurity_Intel_CRozas.pdf > > > Thanks. > > Atsushi SAKAI >

Regards,
Stefan
> > > > _______________________________________________ > Xense-devel mailing list > Xense-devel@xxxxxxxxxxxxxxxxxxx > http://lists.xensource.com/xense-devel

_______________________________________________
Xense-devel mailing list
Xense-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xense-devel

Follow-Ups:
- Re: [Xense-devel] [Q] about vTPM
  - From: Martin Hermanowski
- Re: [Xense-devel] [Q] about vTPM
  - From: Atsushi SAKAI

References:
- [Xense-devel] [Q] about vTPM
  - From: Atsushi SAKAI

Prev by Date: [Xense-devel] [Q] about vTPM
Next by Date: Re: [Xense-devel] [Q] about vTPM
Previous by thread: [Xense-devel] [Q] about vTPM
Next by thread: Re: [Xense-devel] [Q] about vTPM
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.