Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Roll back protection #24

Open
Ham22 opened this issue Dec 9, 2016 · 0 comments
Open

Roll back protection #24

Ham22 opened this issue Dec 9, 2016 · 0 comments
Labels
s: backlog
Milestone
ci40 verified boo...

Comments

@Ham22
Copy link
Member

Ham22 commented Dec 9, 2016
edited by Shpinkso
Loading

We can use the TPM counters to implement rollback protection.

Requirements:

  • check version being booted is not less than TPM counter version
  • make sure version checked is the version being booted so it can't be switched out after the check
  • if version being booted has booted successfully bump tpm version counter to current version.
@Ham22 Ham22 added this to the ci40 verified boot support milestone Dec 9, 2016
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
s: backlog
Projects
None yet
Milestone
ci40 verified boot support
Development

No branches or pull requests
2 participants
@Ham22 @Shpinkso