{"id":187,"date":"2021-05-28T13:41:23","date_gmt":"2021-05-28T12:41:23","guid":{"rendered":"https:\/\/prestalab.net\/?p=187"},"modified":"2023-06-13T18:52:41","modified_gmt":"2023-06-13T17:52:41","slug":"discoverit-series-episode-1-trusted-platform-modules-tpms-part-1","status":"publish","type":"post","link":"https:\/\/prestalab.net\/fr\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/","title":{"rendered":"DiscoverIT Series, Episode 1: Trusted Platform Modules (TPMs) &#8211; Part 1"},"content":{"rendered":"<p>Hi, my name is <a href=\"https:\/\/www.linkedin.com\/in\/mostafaidrassi\" target=\"_blank\" rel=\"noreferrer noopener\">El Mostafa IDRASSI<\/a>, and welcome to the &#8216;DiscoverIT Series&#8217;. Throughout this new series, I will be presenting some of the IT topics that have emerged during my work as CTO <a href=\"https:\/\/prestalab.net\/fr\/\" target=\"_blank\" rel=\"noreferrer noopener\">@PrestaLab<\/a>.<\/p>\n\n\n\n<p>In this first episode, I will be digging into the Trusted Platform Modules (TPMs). I will be answering some questions that I myself was asking when I had to work on this subject. So, buckle up, we&#8217;re in for a good ride!<\/p>\n\n\n\n<h2>I- What are TPMs ?<\/h2>\n\n\n\n<p>A Trusted Platform Module (TPM) is nothing more than a <strong>microprocessor<\/strong> that can perform <strong>cryptographic operations.<\/strong> But, unlike other microprocessors, it comes with many <strong>security features and measures<\/strong> that guarantee its <strong>tamper resistance<\/strong>. As a result, a malicious entity cannot tamper with its functionalities and components.<\/p>\n\n\n\n<p>Physically, a TPM chip consists of <strong>3 parts<\/strong> :<\/p>\n\n\n\n<ol>\n<li>A <strong>Crypto Processor<\/strong>\n<ul>\n<li>Responsible for performing crypto operations (e.g. key generation, signature, hashing, decryption, random number generation&#8230;).<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li>A <strong>Persistent Non-Volatile Memory (NVRAM)<\/strong>\n<ul>\n<li>Responsible for storing reboot-persistent entities.<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li>A <strong>Transient Volatile Memory<\/strong>\n<ul>\n<li>Responsible for storing transient non-persistent entities. A platform reboot flushes all of its content.<\/li>\n<\/ul>\n<\/li>\n<\/ol>\n\n\n\n<h2>II- What are the use cases of TPMs ?<\/h2>\n\n\n\n<p>Following this definition, one might not see what distinguishes a TPM from other <strong>crypto-processors (e.g. Smart-Cards<\/strong>). Like most of them, a TPM chip comes with a <strong>high quality RNG<\/strong> and <strong>facilities for signing, hashing and decrypting data<\/strong>. But what makes it special are <strong>4 exclusive features<\/strong> that it provides to the platform it is linked to :<\/p>\n\n\n\n<h3>&#8211; <strong>Device Authentication<\/strong><\/h3>\n\n\n\n<p>The platform can <strong>authenticate<\/strong> itself to a third-party using a <strong>TPM-backed key<\/strong>. <br>It can achieve this in 2 fashions :<\/p>\n\n\n\n<ul>\n<li>Using a<strong> Privacy-focused Key Attestation<\/strong> <strong>process (e.g. DAA)<\/strong>.<\/li>\n\n\n\n<li>Using a <strong>Privacy-invasive Key Attestation process (e.g. PCA)<\/strong>.<\/li>\n<\/ul>\n\n\n\n<p>Both processes allow the platform to <strong>prove <\/strong>to the third-party that the <strong>key truly originated from its genuine TPM chip<\/strong>. The only difference between the two is that the first one <strong>does not reveal any information<\/strong> that can <strong>trace<\/strong> the key back to that <strong>specific TPM chip<\/strong>, while the second one does.<\/p>\n\n\n\n<h3>&#8211; <strong>System Integrity<\/strong><\/h3>\n\n\n\n<p>The platform can prove to a third-party that it is <strong>running in a specific state<\/strong>. It can achieve this using a <strong>Remote Attestation process<\/strong>. What this means is that the platform collects <strong>security measurements<\/strong> <strong>and metrics<\/strong> from both the machine and the TPM chip and sends them to the third-party as <strong>proof of its state<\/strong>.<\/p>\n\n\n\n<h3>&#8211; <strong>Data Binding<\/strong><\/h3>\n\n\n\n<p>The platform can guarantee to a third-party that some data is <strong>bound<\/strong> to its TPM chip. It achieves this by encrypting the data using a key created inside of its TPM chip. As a result,<strong> only its TPM chip can decrypt it.<\/strong><\/p>\n\n\n\n<h3>&#8211; <strong>Data Sealing<\/strong><\/h3>\n\n\n\n<p>The platform can guarantee to a third-party that some data is <strong>bound<\/strong> to its TPM chip and to a <strong>specific state of the platform<\/strong>. It achieves this by, first, <strong>sealing <\/strong>the data to the <strong>platform state<\/strong> <strong>(e.g. by adding the platform&#8217;s security measurements to the data)<\/strong>, then <strong>encrypting<\/strong> the result using a key created inside of its TPM chip. As a result, <strong>only its TPM chip can decrypt it, with the additional condition that the platform state matches the one specified during the encryption.<\/strong><\/p>\n\n\n\n<h2>III- What are the types of TPMs ?<\/h2>\n\n\n\n<p>Now that I have explained to you the 4 main use-cases of a TPM, I will talk now for a little bit about its variations. <br>Currently, there are <strong>5 types of TPMs<\/strong> offering different trade-offs between cost, features and security. Nowadays, <strong>Firmware TPMs (fTPMs) <\/strong>and <strong>Discrete TPMs<\/strong> can be found in a lot of mainstream motherboards. <\/p>\n\n\n\n<p>The <a href=\"http:\/\/as the following table from the TCG describes,\" target=\"_blank\" rel=\"noreferrer noopener\">TCG<\/a> (the consortium responsible for the conception of TPMs) have come up with the following great table which describes these variations :<\/p>\n\n\n\n<figure class=\"wp-block-image size-full is-style-default\"><img decoding=\"async\" loading=\"lazy\" width=\"922\" height=\"476\" src=\"https:\/\/prestalab.net\/wp-content\/uploads\/2021\/04\/image.png\" alt=\"The 5 types of Trusted Platform Modules (TPMs)\" class=\"wp-image-189\" srcset=\"https:\/\/prestalab.net\/wp-content\/uploads\/2021\/04\/image.png 922w, https:\/\/prestalab.net\/wp-content\/uploads\/2021\/04\/image-300x155.png 300w, https:\/\/prestalab.net\/wp-content\/uploads\/2021\/04\/image-768x396.png 768w, https:\/\/prestalab.net\/wp-content\/uploads\/2021\/04\/image-16x8.png 16w\" sizes=\"(max-width: 922px) 100vw, 922px\" \/><figcaption class=\"wp-element-caption\">Table 1: TPM Variations<\/figcaption><\/figure>\n\n\n\n<p>Also, TPMs come in 3 versions : <strong>TPM v1.1b, TPM v1.2<\/strong> and <strong>TPM v2.0<\/strong>. <br>In all the following, I&#8217;ll be exclusively talking about <strong>TPM v2.0<\/strong> chips, since this version is the newest iteration of the three and it is gaining in popularity as well.<\/p>\n\n\n\n<p>But, before going any further, I need to define some key concepts and terms that you need to understand in order to get a better grasp on TPMs.<\/p>\n\n\n\n<h2>IV &#8211; What are some of the key concepts and terms related to TPMs ?<\/h2>\n\n\n\n<h3>&#8211; Entity<\/h3>\n\n\n\n<p>A <strong>TPM entity<\/strong> is simply an <strong>item <\/strong>in the TPM. It can be a <strong>key<\/strong>, <strong>some data<\/strong>, a <strong>session <\/strong>or some other <strong>TPM-specific entity <\/strong>(e.g. <strong>PCRs<\/strong>). An entity is always referenced by a <strong>handle<\/strong>.<\/p>\n\n\n\n<h3>&#8211; Handle<\/h3>\n\n\n\n<p>A <strong>handle<\/strong> represents a <strong>reference <\/strong>to an entity<strong> <\/strong>in the TPM. Think of it as the <strong>address <\/strong>of that entity in the TPM&#8217;s memory.<br>There are 3 types of handles : <strong>Transient<\/strong>, <strong>Persistent <\/strong>and <strong>Permanent <\/strong>handles.<\/p>\n\n\n\n<p>A <strong>Transient Handle<\/strong> refers to an entity that lives in the <strong>Volatile Memory of the TPM<\/strong>. Such handles are valid until they are <strong>manually flushed<\/strong> or until the platform is <strong>rebooted<\/strong>. They refer to <strong>transient keys<\/strong>, <strong>authorization sessions<\/strong> and <strong>session contexts<\/strong>.<br><br>A <strong>Persistent Handle<\/strong>, on the other hand, refers to an entity that lives in the <strong>Non-Volatile Memory of the TPM<\/strong>, also known as the <strong>NVRAM. <\/strong>Such handles <strong>persist <\/strong>through the platform&#8217;s <strong>reboot<\/strong>, and can be <strong>evicted out<\/strong> of the <strong>NVRAM <\/strong>by their owner. They refer to <strong>persistent keys <\/strong>and <strong>data<\/strong>.<\/p>\n\n\n\n<p>Finally, a <strong>Permanent Handle <\/strong>is one that<strong> the TPM specification<\/strong> <strong>defines<\/strong>. Such handles refer to entities that live in the <strong>Non-Volatile Memory of the TPM<\/strong>, but cannot be <strong>evicted out <\/strong>of it as opposed to <strong>Persistent Handles.<\/strong> They refer to <strong>permanent TPM components<\/strong> that <strong>are not deletable<\/strong>, like the <strong>PCRs<\/strong> and the <strong>hierarchies<\/strong>.<\/p>\n\n\n\n<p>The following flow chart showcases how a key becomes persistent in the TPM&#8217;s NVRAM:<\/p>\n\n\n\n<figure class=\"wp-block-image size-full is-resized\"><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/prestalab.net\/wp-content\/uploads\/2021\/05\/image-2.png\" alt=\"\" class=\"wp-image-351\" width=\"1441\" height=\"541\" srcset=\"https:\/\/prestalab.net\/wp-content\/uploads\/2021\/05\/image-2.png 1441w, https:\/\/prestalab.net\/wp-content\/uploads\/2021\/05\/image-2-300x113.png 300w, https:\/\/prestalab.net\/wp-content\/uploads\/2021\/05\/image-2-1024x384.png 1024w, https:\/\/prestalab.net\/wp-content\/uploads\/2021\/05\/image-2-768x288.png 768w, https:\/\/prestalab.net\/wp-content\/uploads\/2021\/05\/image-2-16x6.png 16w\" sizes=\"(max-width: 1441px) 100vw, 1441px\" \/><figcaption class=\"wp-element-caption\">Figure 1: Creation of a persistent TPM key<\/figcaption><\/figure>\n\n\n\n<h3>&#8211; Hierarchy<\/h3>\n\n\n\n<p>A <strong>hierarchy<\/strong> is a <strong>collection <\/strong>of entities that are <strong>related and managed as a group<\/strong>. A TPM chip consists of <strong>4 hierarchies<\/strong> : <strong>Null<\/strong>, <strong>Platform<\/strong>, <strong>Storage <\/strong>and <strong>Endorsement <\/strong>hierarchies. They can be enabled and disabled <strong>independently <\/strong>of one another.<\/p>\n\n\n\n<p>All 4 hierarchies are <strong>permanent <\/strong>: they have <strong>permanent handles<\/strong> and are <strong>never deletable<\/strong>.<\/p>\n\n\n\n<p>The <strong>Platform, Storage <\/strong>and <strong>Endorsement<\/strong> hierarchies are <strong>persistent hierarchies<\/strong>. This means that keys created and loaded into one of these hierarchies can still be <strong>loaded once again after a platform reboot<\/strong>.<br>On the other hand, the <strong>Null<\/strong> hierarchy is <strong>ephemeral <\/strong>: all its keys are <strong>erased and invalidated after a platform reboot.<\/strong><\/p>\n\n\n\n<p>Finally, each hierarchy has a <strong>seed <\/strong>that sits at its top.<\/p>\n\n\n\n<h3>&#8211; Seed<\/h3>\n\n\n\n<p>A <strong>seed<\/strong> is a <strong>large non-deterministic number<\/strong> generated by the <strong>TPM&#8217;s RNG<\/strong>. It is never exposed outside of the TPM and lives in its <strong>NVRAM<\/strong>. It is <strong>unique <\/strong>to each TPM chip and is used to create the <strong>Primary Keys<\/strong>.<\/p>\n\n\n\n<p>The <strong>Platform, Storage <\/strong>and <strong>Endorsement<\/strong> hierarchies all have <strong>persistent seeds : <\/strong>this is the reason why they persist after a reboot. However, these seeds can be <strong>recreated by the hierarchy owner<\/strong>, although such manipulation is rarely performed in practice since it results in <strong>voiding the whole hierarchy<\/strong>.<\/p>\n\n\n\n<p>On the other hand, the <strong>Null <\/strong>hierarchy has an <strong>ephemeral seed<\/strong> : <strong>a reboot<\/strong> <strong>resets<\/strong> it, leading to a <strong>reset of the whole hierarchy.<\/strong><\/p>\n\n\n\n<h3>&#8211; Primary Key<\/h3>\n\n\n\n<p>A <strong>Primary Key<\/strong> represents the <strong>root<\/strong> of all the keys in a hierarchy. It is usually created in a <strong>deterministic way<\/strong> by feeding the <strong>hierarchy seed<\/strong>, a <strong>known creation template<\/strong> and <strong>some unique data <\/strong>into the <strong>TPM&#8217;s Key Derivation function (KDF). <\/strong>This means that, with the seed being a constant, providing the <strong>same creation template<\/strong> and <strong>unique data<\/strong> to the <strong>KDF <\/strong>always yields the <strong>same primary key<\/strong>.<\/p>\n\n\n\n<p>A TPM can create an <strong>infinite number<\/strong> of primary keys <strong>by varying the creation template<\/strong> and <strong>the unique data<\/strong> fed to the KDF. However, because of the finite amount of memory a TPM chip has, <strong>not all of the primary keys can be evicted into persistent storage.<\/strong><\/p>\n\n\n\n<p>Primary keys are usually <strong>restricted <\/strong>: this means that they can perform cryptographic operations only on <strong>internal TPM data.<\/strong> Also, they come in <strong>2 shapes <\/strong>: <\/p>\n\n\n\n<ul>\n<li><strong>Primary<\/strong> &#8220;<strong>Storage&#8221; Keys<\/strong> which have the &#8220;<strong>decrypt<\/strong>&#8221; ability. These are the most <strong>commonly created<\/strong> as they allow for the creation of <strong>wrapped children keys<\/strong>.<\/li>\n\n\n\n<li><strong>Primary &#8220;Signing&#8221; Keys<\/strong> which have the &#8220;<strong>sign<\/strong>&#8221; ability. These are used for specific use cases, like<strong> Key Attestation. <\/strong>They can <strong>only sign TPM-related structures<\/strong> and <strong>cannot have children<\/strong> <strong>keys<\/strong>.<\/li>\n<\/ul>\n\n\n\n<h3>&#8211; Child Key<\/h3>\n\n\n\n<p>A <strong>Child Key <\/strong>represents a key under a primary or another child key. Unlike a primary key, a child key can be <strong>non-restricted<\/strong>. This means that it can perform cryptographic operations on <strong>arbitrary data<\/strong>. This is why children keys are used to <strong>sign and decrypt external data<\/strong>. If a child key has the &#8220;<strong>decrypt<\/strong>&#8221; ability, it can have its own <strong>wrapped children keys<\/strong>, leading to a more complex hierarchy.<\/p>\n\n\n\n<h3>&#8211; Authorization Policy<\/h3>\n\n\n\n<p>A TPM key can be created in a way so that it can only be used when <strong>some conditions are fulfilled<\/strong>. We call these conditions <strong>assertions, <\/strong>and they can be <strong>one or a combination<\/strong> of the following :<\/p>\n\n\n\n<ul>\n<li>Passwords.<\/li>\n\n\n\n<li>HMACs.<\/li>\n\n\n\n<li>Machine state (e.g. Platform Configuration Registers (PCRs) values).<\/li>\n\n\n\n<li>TPM state (e.g. counters, time).<\/li>\n<\/ul>\n\n\n\n<p>That&#8217;s about it for this episode! I believe this was a decent introduction to TPMs. I hope this was helpful for those of you who have just started working with TPMs and also for those of you who are just curious about such technologies.<br>See you in the second part where I&#8217;ll be talking more in detail about the TPM hierarchies, PCRs and TPM&#8217;s use cases.<\/p>\n\n\n\n<h1>References<\/h1>\n\n\n\n<p><a href=\"https:\/\/link.springer.com\/book\/10.1007\/978-1-4302-6584-9\" target=\"_blank\" rel=\"noreferrer noopener\">Will Arthur and David Challener, 2015 &#8211; A Practical Guide to TPM 2.0<\/a><br><a href=\"https:\/\/trustedcomputinggroup.org\/resource\/tpm-library-specification\/\" target=\"_blank\" rel=\"noreferrer noopener\">Trusted Computing Group (TCG) TPM 2.0 Library<\/a><\/p>","protected":false},"excerpt":{"rendered":"<p>Hi, my name is El Mostafa IDRASSI, and welcome to the &#8216;DiscoverIT Series&#8217;. Throughout this new series, I will be presenting some of the IT topics that have emerged during my work as CTO @PrestaLab. In this first episode, I will be digging into the Trusted Platform Modules (TPMs). I will be answering some questions&hellip; <br \/> <a class=\"read-more\" href=\"https:\/\/prestalab.net\/fr\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/\">Lire la suite<\/a><\/p>","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":true,"template":"","format":"standard","meta":[],"categories":[3],"tags":[8,4,5],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v21.1 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>TPMs (Trusted Platform Modules) - DiscoverIT Series, Episode 1, Part 1<\/title>\n<meta name=\"description\" content=\"TPMs are microprocessors that can perform cryptographic operations. They come with security measures that guarantee their tamper resistance.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/prestalab.net\/fr\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/\" \/>\n<meta property=\"og:locale\" content=\"fr_FR\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"TPMs (Trusted Platform Modules) - DiscoverIT Series, Episode 1, Part 1\" \/>\n<meta property=\"og:description\" content=\"TPMs are microprocessors that can perform cryptographic operations. They come with security measures that guarantee their tamper resistance.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/prestalab.net\/fr\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/\" \/>\n<meta property=\"og:site_name\" content=\"PrestaLab\" \/>\n<meta property=\"article:published_time\" content=\"2021-05-28T12:41:23+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-06-13T17:52:41+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/prestalab.net\/wp-content\/uploads\/2021\/04\/image.png\" \/>\n<meta name=\"author\" content=\"El Mostafa IDRASSI\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"\u00c9crit par\" \/>\n\t<meta name=\"twitter:data1\" content=\"El Mostafa IDRASSI\" \/>\n\t<meta name=\"twitter:label2\" content=\"Dur\u00e9e de lecture estim\u00e9e\" \/>\n\t<meta name=\"twitter:data2\" content=\"8 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/prestalab.net\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/prestalab.net\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/\"},\"author\":{\"name\":\"El Mostafa IDRASSI\",\"@id\":\"https:\/\/prestalab.net\/#\/schema\/person\/7bba502cea915bd8b793823425db5d44\"},\"headline\":\"DiscoverIT Series, Episode 1: Trusted Platform Modules (TPMs) &#8211; Part 1\",\"datePublished\":\"2021-05-28T12:41:23+00:00\",\"dateModified\":\"2023-06-13T17:52:41+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/prestalab.net\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/\"},\"wordCount\":1585,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/prestalab.net\/#organization\"},\"keywords\":[\"Security\",\"TPM\",\"Trusted Platform Module\"],\"articleSection\":[\"DiscoverIT\"],\"inLanguage\":\"fr-FR\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/prestalab.net\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/prestalab.net\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/\",\"url\":\"https:\/\/prestalab.net\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/\",\"name\":\"TPMs (Trusted Platform Modules) - DiscoverIT Series, Episode 1, Part 1\",\"isPartOf\":{\"@id\":\"https:\/\/prestalab.net\/#website\"},\"datePublished\":\"2021-05-28T12:41:23+00:00\",\"dateModified\":\"2023-06-13T17:52:41+00:00\",\"description\":\"TPMs are microprocessors that can perform cryptographic operations. They come with security measures that guarantee their tamper resistance.\",\"breadcrumb\":{\"@id\":\"https:\/\/prestalab.net\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/#breadcrumb\"},\"inLanguage\":\"fr-FR\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/prestalab.net\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/prestalab.net\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/prestalab.net\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"DiscoverIT Series, Episode 1: Trusted Platform Modules (TPMs) &#8211; Part 1\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/prestalab.net\/#website\",\"url\":\"https:\/\/prestalab.net\/\",\"name\":\"PrestaLab\",\"description\":\"IT Security &amp; Consulting Experts\",\"publisher\":{\"@id\":\"https:\/\/prestalab.net\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/prestalab.net\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"fr-FR\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/prestalab.net\/#organization\",\"name\":\"PrestaLab\",\"url\":\"https:\/\/prestalab.net\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"fr-FR\",\"@id\":\"https:\/\/prestalab.net\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/prestalab.net\/wp-content\/uploads\/2020\/02\/handout_name.png\",\"contentUrl\":\"https:\/\/prestalab.net\/wp-content\/uploads\/2020\/02\/handout_name.png\",\"width\":829,\"height\":176,\"caption\":\"PrestaLab\"},\"image\":{\"@id\":\"https:\/\/prestalab.net\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.linkedin.com\/company\/prestalab\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/prestalab.net\/#\/schema\/person\/7bba502cea915bd8b793823425db5d44\",\"name\":\"El Mostafa IDRASSI\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"fr-FR\",\"@id\":\"https:\/\/prestalab.net\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/be40af1ea2fa52c449f2c981b4454414?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/be40af1ea2fa52c449f2c981b4454414?s=96&d=mm&r=g\",\"caption\":\"El Mostafa IDRASSI\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"TPMs (Trusted Platform Modules) - DiscoverIT Series, Episode 1, Part 1","description":"TPMs are microprocessors that can perform cryptographic operations. They come with security measures that guarantee their tamper resistance.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/prestalab.net\/fr\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/","og_locale":"fr_FR","og_type":"article","og_title":"TPMs (Trusted Platform Modules) - DiscoverIT Series, Episode 1, Part 1","og_description":"TPMs are microprocessors that can perform cryptographic operations. They come with security measures that guarantee their tamper resistance.","og_url":"https:\/\/prestalab.net\/fr\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/","og_site_name":"PrestaLab","article_published_time":"2021-05-28T12:41:23+00:00","article_modified_time":"2023-06-13T17:52:41+00:00","og_image":[{"url":"https:\/\/prestalab.net\/wp-content\/uploads\/2021\/04\/image.png"}],"author":"El Mostafa IDRASSI","twitter_card":"summary_large_image","twitter_misc":{"\u00c9crit par":"El Mostafa IDRASSI","Dur\u00e9e de lecture estim\u00e9e":"8 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/prestalab.net\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/#article","isPartOf":{"@id":"https:\/\/prestalab.net\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/"},"author":{"name":"El Mostafa IDRASSI","@id":"https:\/\/prestalab.net\/#\/schema\/person\/7bba502cea915bd8b793823425db5d44"},"headline":"DiscoverIT Series, Episode 1: Trusted Platform Modules (TPMs) &#8211; Part 1","datePublished":"2021-05-28T12:41:23+00:00","dateModified":"2023-06-13T17:52:41+00:00","mainEntityOfPage":{"@id":"https:\/\/prestalab.net\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/"},"wordCount":1585,"commentCount":0,"publisher":{"@id":"https:\/\/prestalab.net\/#organization"},"keywords":["Security","TPM","Trusted Platform Module"],"articleSection":["DiscoverIT"],"inLanguage":"fr-FR","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/prestalab.net\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/prestalab.net\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/","url":"https:\/\/prestalab.net\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/","name":"TPMs (Trusted Platform Modules) - DiscoverIT Series, Episode 1, Part 1","isPartOf":{"@id":"https:\/\/prestalab.net\/#website"},"datePublished":"2021-05-28T12:41:23+00:00","dateModified":"2023-06-13T17:52:41+00:00","description":"TPMs are microprocessors that can perform cryptographic operations. They come with security measures that guarantee their tamper resistance.","breadcrumb":{"@id":"https:\/\/prestalab.net\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/#breadcrumb"},"inLanguage":"fr-FR","potentialAction":[{"@type":"ReadAction","target":["https:\/\/prestalab.net\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/prestalab.net\/2021\/05\/28\/discoverit-series-episode-1-trusted-platform-modules-tpms-part-1\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/prestalab.net\/"},{"@type":"ListItem","position":2,"name":"DiscoverIT Series, Episode 1: Trusted Platform Modules (TPMs) &#8211; Part 1"}]},{"@type":"WebSite","@id":"https:\/\/prestalab.net\/#website","url":"https:\/\/prestalab.net\/","name":"PrestaLab","description":"Experts en S\u00e9curit\u00e9 &amp; Conseil IT","publisher":{"@id":"https:\/\/prestalab.net\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/prestalab.net\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"fr-FR"},{"@type":"Organization","@id":"https:\/\/prestalab.net\/#organization","name":"PrestaLab","url":"https:\/\/prestalab.net\/","logo":{"@type":"ImageObject","inLanguage":"fr-FR","@id":"https:\/\/prestalab.net\/#\/schema\/logo\/image\/","url":"https:\/\/prestalab.net\/wp-content\/uploads\/2020\/02\/handout_name.png","contentUrl":"https:\/\/prestalab.net\/wp-content\/uploads\/2020\/02\/handout_name.png","width":829,"height":176,"caption":"PrestaLab"},"image":{"@id":"https:\/\/prestalab.net\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.linkedin.com\/company\/prestalab"]},{"@type":"Person","@id":"https:\/\/prestalab.net\/#\/schema\/person\/7bba502cea915bd8b793823425db5d44","name":"El Mostafa IDRASSI","image":{"@type":"ImageObject","inLanguage":"fr-FR","@id":"https:\/\/prestalab.net\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/be40af1ea2fa52c449f2c981b4454414?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/be40af1ea2fa52c449f2c981b4454414?s=96&d=mm&r=g","caption":"El Mostafa IDRASSI"}}]}},"_links":{"self":[{"href":"https:\/\/prestalab.net\/fr\/wp-json\/wp\/v2\/posts\/187"}],"collection":[{"href":"https:\/\/prestalab.net\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/prestalab.net\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/prestalab.net\/fr\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/prestalab.net\/fr\/wp-json\/wp\/v2\/comments?post=187"}],"version-history":[{"count":436,"href":"https:\/\/prestalab.net\/fr\/wp-json\/wp\/v2\/posts\/187\/revisions"}],"predecessor-version":[{"id":666,"href":"https:\/\/prestalab.net\/fr\/wp-json\/wp\/v2\/posts\/187\/revisions\/666"}],"wp:attachment":[{"href":"https:\/\/prestalab.net\/fr\/wp-json\/wp\/v2\/media?parent=187"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/prestalab.net\/fr\/wp-json\/wp\/v2\/categories?post=187"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/prestalab.net\/fr\/wp-json\/wp\/v2\/tags?post=187"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}