Matthew Garrett ([personal profile] mjg59) wrote 2025-01-02 06:17 am (UTC)

Oh, sorry, I see the scenario you're describing now (the GPU establishes a communication session with the TPM that's opaque to the OS) - the easy way around that would just be to fake a TPM, unless the GPU itself is going to have a database of every legitimate EK cert CA, which would mean this would stop working if the GPU were plugged into a machine with too new a TPM.
(36 comments)

Post a comment in response:

If you don't have an account you can create one now.
HTML doesn't work in the subject.
More info about formatting

If you are unable to use this captcha for any reason, please contact us by email at support@dreamwidth.org

 
Notice: This account is set to log the IP addresses of everyone who comments.
Links will be displayed as unclickable URLs to help prevent spam.