[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Broken dream of mine :(

From: Michal Suchanek
Subject: Re: Broken dream of mine :(
Date: Mon, 21 Sep 2009 13:34:00 +0200

2009/9/21 Sam Mason <address@hidden>:
> On Mon, Sep 21, 2009 at 12:19:05PM +0200, Michal Suchanek wrote:
>> The problem is that if you get a version of either kernel that does
>> not lie to the process, and you can verify that with some scheme
>> involving TPM or similar you can now make application that refuses to
>> run unless it has access to true opaque memory.
> I thought the point of TPM was that the kernel can't lie, or rather if
> it does then you can trivially find out that it has.  You end up getting
> a signature of the programs in the TCB and hence you can allow your
> code to run only if you know that this set of processes are known to be
> "good".

You can verify what kernel you are running with TPM. If you separately
verify that certain kernel (bit image) does not lie and you can verify
that you are running that kernel then you can believe it does not lie.



reply via email to

[Prev in Thread] Current Thread [Next in Thread]