Software Archive
Read-only legacy content
Announcements
Welcome to the Intel Community. If you get an answer you like, please mark it as an Accepted Solution to help others. Thank you!
For the latest information on Intel’s response to the Log4j/Log4Shell vulnerability, please see Intel-SA-00646
17065 Discussions

question about Intel TXT ac module integrity

marten_gajda
Beginner
96 Views
I've a question regarding the authentication of the ac module.
I understand that the header of the ac module features the rsa public
key to verify the signature provided in the module header.
My question is: How is the rsa pulic key verified?
The Trusted Execution Technology - Developer's Guide mentions that the
hash of the public key is computed and compared. Compared to what?
Is this hash stored somewhere in the chipset or the cpu? Is it possible
to update this hash in case the key pair gets compromised?
Thank you.

regards

Marten Gajda
0 Kudos
2 Replies
David_O_Intel1
Employee
96 Views
An engineer who works on thistold me that thehash of the public key is stored in a TXT configuration register (which is provided by the chipset).

David
marten_gajda
Beginner
96 Views
An engineer who works on thistold me that thehash of the public key is stored in a TXT configuration register (which is provided by the chipset).

David
thank you, I think this information will do.

Marten


Reply