credactivation

package
v0.0.0-...-7623f9f Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Oct 12, 2022 License: Apache-2.0 Imports: 11 Imported by: 0

Documentation

Overview

Package credactivation implements generation of data blobs to be used when invoking the ActivateCredential command, on a TPM.

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func Generate

func Generate(aik *tpm2.HashValue, pub crypto.PublicKey, symBlockSize int, secret []byte) ([]byte, []byte, error)

Generate returns a TPM2B_ID_OBJECT & TPM2B_ENCRYPTED_SECRET for use in credential activation. This has been tested on EKs compliant with TCG 2.0 EK Credential Profile specification, revision 14. The pub parameter must be a pointer to rsa.PublicKey. The secret parameter must not be longer than the longest digest size implemented by the TPM. A 32 byte secret is a safe, recommended default.

This function implements Credential Protection as defined in section 24 of the TPM specification revision 2 part 1, with the additional caveat of not supporting ECC EKs. See: https://trustedcomputinggroup.org/resource/tpm-library-specification/

Types

This section is empty.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL