You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
If PCR7 isn't supported for some reason, eg, because secure boot is disabled or the device is not in deployed mode, then we should be able to fall back to a safe profile that includes PCRs 1, 2 and 4 and 5. PCR 2 and 4 are for binding to all code that's loaded outside of the platform firmware.
PCR1 is to bind to all of the platform firmware's configuration - currently, changes to security-sensitive settings such as enabling a debugger or disabling DMA remapping change the value of PCR7 by adding extra EVI_EFI_ACTION events.
PCR5 contains the GPT of the IBL and can also be used for any OS bootloader configuration, although security sensitive bootloader settings should probably also modify the value of PCR7 in the same way that disabling DMA remapping does.
Note that v1.06 of the TCG PC-Client PFP spec introduces a new event type - EV_EFI_GPT_EVENT2, the event data for which uses the identical format as the previous EV_EFI_GPT_EVENT event - UEFI_GPT_DATA. The only difference is that the DiskGUID field of the partition table header and the UniquePartitionGUID fields of each partition entry are zeroed out for privacy reasons because attestations are meant to be privacy preserving, and high entropy fields in measurements break this.
The text was updated successfully, but these errors were encountered:
If PCR7 isn't supported for some reason, eg, because secure boot is disabled or the device is not in deployed mode, then we should be able to fall back to a safe profile that includes PCRs 1, 2 and 4 and 5. PCR 2 and 4 are for binding to all code that's loaded outside of the platform firmware.
PCR1 is to bind to all of the platform firmware's configuration - currently, changes to security-sensitive settings such as enabling a debugger or disabling DMA remapping change the value of PCR7 by adding extra EVI_EFI_ACTION events.
PCR5 contains the GPT of the IBL and can also be used for any OS bootloader configuration, although security sensitive bootloader settings should probably also modify the value of PCR7 in the same way that disabling DMA remapping does.
Note that v1.06 of the TCG PC-Client PFP spec introduces a new event type -
EV_EFI_GPT_EVENT2
, the event data for which uses the identical format as the previousEV_EFI_GPT_EVENT
event -UEFI_GPT_DATA
. The only difference is that theDiskGUID
field of the partition table header and theUniquePartitionGUID
fields of each partition entry are zeroed out for privacy reasons because attestations are meant to be privacy preserving, and high entropy fields in measurements break this.The text was updated successfully, but these errors were encountered: