Browse the Community
High-end easy to use security solutions that provide an anchor of trust for your application, connecting IoT devices to the cloud, giving billons of device its own unique identity, pre-personalized turnkey solutions, zero-touch onboarding, high performance, ... We did not meet your expectations? Let us know!
OPTIGA™ TPM (Trusted Platform Module) offers a broad portfolio of standardized security controllers to protect the integrity and authenticity of embedded devices and systems. With a secured key store and support for a variety of encryption algorithms, OPTIGA™ TPM security chips provide robust protection for critical data and processes through their rich functionality. OPTIGA™ TPM security controllers are ideal for platforms running both Windows and Linux and its derivatives (SLB 9645 product versions for Chrome OS available). Based on Trusted Computing Group (TCG) standards, they support the TPM 1.2 or the latest innovative TPM 2.0 standard.
We have programming requirements for SLB9665 and SLB9670, and we are evaluating to implement TPM programming/provisioning to our programming systems. We have HSM and CA server, and we need the more detail information about LPC/SPI protocol and programming flow to implement. We have tried to find the source code from github, but it seems based on the OS to execute the IC provisioning.
May i know any documents about the detail (protocol and flow and command..) for third party?
I am using HW with TPM module and with RHEL OS installed
We have binded password with Luks, so that we dont need to enter password on every boot.
when multiple abrupt power cycle happened, the TPM module got locked. I think DA lock happened.
1. How to come out from such lock out and recover automatically?
Is there any concern if OPTIGA TPM SLM9670 is located on a SPI bus, where other ICs such as SRAM and flash memory are connected to a CPU? SCLK, MOSI, and MISO signals will be driven even when CS# for TPM is negated. Is this OK?
Please kindly advise. Thanks,Show Less
I bought a evaluation board iridium 9645 ( IRIDIUM9645TPMI2CTOBO1), with a SLB9645 TPM 1.2, but I can't find any datasheet to plug this board on a raspberry pi 3B (40 pins header).
Could you provide the datasheet? If there is no datasheet, could you tell me what is the interest of the two jumpers, the 28 pins header, the 6 pins headers? The 26 pins header is for raspberry?
Where should I plug it on the header of my raspberry pi 3B, and in what way should I plug it?
How to read Manufacture/Vendor ID from SLM9670AQ20FW1311XTMA1.
Page 12 discuss about TPM_PT_MANUFACTURER : “IFX”
But as per TCG TPM Vendor ID Registry Family 1.2 and 2.0, Vendor ID for Infineon is
Hi, I'm using a TPM with raspberry and I'm making some performance tests.
I have modified the tpm-tools (create,signature,verifysignature) and taken some times like this (i used clock_gettime to consider also i/o) :
After some executions I computed the avg, I obtained that ECDSA verification is faster than the ECDSA signature computation, but it should be the opposite, or am I wrong?
Is there some hardware optimization for verification?
It could depend on the i/o from the TPM like the signature have to return the value, while the verification is just true/false?
Thanks in advanceShow Less
Having trouble accessing documents and utilities. Get error like unable to authenticate. Tried firefox, chrome and edge same error.
I have some questions on Infineon OPTIGA™ Trust M SLS 32AIA010MH and especially optiga_crypt_ecdsa_sign().
Are there some limitations on the length of the provided digest in the optiga_crypt_ecdsa_sign() API-call? I have an application where I want to sign a digest of ~300 bytes (i.e. I do not want to apply the signature on a hash of the data), but providing such digest to the optiga_crypt_ecdsa_sign() method gives me an error code of 0x8005. Why is that? This error code does not seem to be defined anywhere either, so I am not able to figure out what it means.
By inspecting the source code, it looks like it should give me an OPTIGA_CMD_ERROR_INVALID_INPUT (0x0203) error instead if any.
Are there some timing constraints in the https://infineon.github.io/optiga-trust-m/ library we need to be aware of?
I have used the procedure outlined in this example: https://github.com/Infineon/optiga-trust-m/blob/develop/examples/optiga/example_optiga_crypt_ecdsa_sign.c, but if I remove the log statements and the performance measurement, it looks like it causes some issues.
Best regardsShow Less