The Trusted Computing Group has a fairly wordy definition
Holy baloney, you're not wrong. They even bothered to have a Glossary section, but nowhere (certainly not there) in that document can I find what they mean by "Trust", and what it means to be the "Root of Trust".
Elsewhere I asserted that there's an unspoken assumption there simply is a mandated, one-way hierarchy of trust that every participant is assumed to slot into. But I didn't expect this document to take me so literally: nowhere is that assumption even clear, let alone examined.
Power management, mobile and firmware developer on Linux. Security developer at nvidia. Ex-biologist. Content here should not be interpreted as the opinion of my employer. Also on Mastodon and Bluesky.
![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
So many words, so little clarity
Date: 2023-07-11 11:22 pm (UTC)Holy baloney, you're not wrong. They even bothered to have a Glossary section, but nowhere (certainly not there) in that document can I find what they mean by "Trust", and what it means to be the "Root of Trust".
Elsewhere I asserted that there's an unspoken assumption there simply is a mandated, one-way hierarchy of trust that every participant is assumed to slot into. But I didn't expect this document to take me so literally: nowhere is that assumption even clear, let alone examined.