Use HMAC and encrypted transactions on the TPM bus
configname: CONFIG_TCG_TPM2_HMAC
Linux Kernel Configuration
└─>Device Drivers
└─>Character devices
└─>TPM Hardware Support
└─>Use HMAC and encrypted transactions on the TPM bus
In linux kernel since version 4.19.318 (release Date: 2024-07-18)
Setting this causes us to deploy a scheme which uses request
and response HMACs in addition to encryption for
communicating with the TPM to prevent or detect bus snooping
and interposer attacks (see tpm-security.rst). Saying Y
here adds some encryption overhead to all kernel to TPM
transactions.
and response HMACs in addition to encryption for
communicating with the TPM to prevent or detect bus snooping
and interposer attacks (see tpm-security.rst). Saying Y
here adds some encryption overhead to all kernel to TPM
transactions.