Tpm software stack is tss.net?

-

i referring tpm management overview page msft: https://technet.microsoft.com/en-us/library/cc730635.aspx information regarding tpm software stack in windows.

from here, see tpm service components in windows consists of following potential layers:

- tpm driver

- tpm base service (tbs)

- tpm wmi (tpm windows management interface)

- tpm management snap-in + wizard.

now looking @ "a practical guide tpm2.0" book has coverage on tpm1.2 also:

in book lists out following high level layers api tpm software stack (which assume referring tss.net being same tpm software stack:

- fapi (feature api)

-eapi (enhanced api)

-sapi (system api)

-tcti

-tab

-resource manager

-local tpm driver

now there add'l information regarding both tbs , tss.net:

- there application use tbs (tpm base services) , application use microsoft tss.net supplies tpm simulator. states tss.net not compliant tcg.

but says in p77, tss  tcg compliant software standard , app-s written tss should work in system implments compliant tss.

so can confusing:

here questions:

- tss.net not seem tss (tpm software stack). here link tss.net:

http://research.microsoft.com/en-us/downloads/35116857-e544-4003-8e7b-584182dc6833/default.aspx

am right?

- looks wmi uses tbs. tbs compliant tss (tcg)? is, windows tpm service components can mapped tss software stack above?

- testing tpm through tpm.msc , considering auomate tests. if automate using wmi tpm, these command line equivalent of  tpm.msc management console? answer yes, tpm.msc appear use wmi based on:https://technet.microsoft.com/en-us/library/cc730635.aspx. if of commands in tpm.msc passes , issues tpm command through other mechanism, worth knowing.

thanks.,









hi,

based on research, tss.net can connected tpm simulator enable application development , debugging on platforms not have tpm 2.0 device. connection simulator on tcp/ip socket simulator may running on remote machine or in process on same machine.

more information you:

tss.net: enabling access tpm managed code

http://research.microsoft.com/en-us/downloads/35116857-e544-4003-8e7b-584182dc6833/

best regards,

amy

please remember mark replies answers if , un-mark them if provide no help. if have feedback technet subscriber support, contact tnmff@microsoft.com.



Windows Server  >  Security



Comments

Post a Comment

Popular posts from this blog

Azure MFA with Azure AD and RDS

-
i have setup following lab in azure , need help. a server (domain controller) , remote desktop services. and server multi factor authentication server. i have setup following one http://www.rdsgurus.com/uncategorized/step-by-step-using-windows-server-2012-r2-rd-gateway-with-azure-multifactor-authentication/ and when im connecting got following error. the user "domain\username", on client computer "xxx.xxx.xxx.xxx", did not meet connection authorization policy requirements , therefore not authorized access rd gateway server. authentication method used was: "ntlm" , connection protocol used: "rpc-http". following error occurred: "23003". also on security log i've got following authentication details: connection request policy name: ts gateway authorization policy network policy name: - authentication provider: radius proxy authentication server: test.test.local authenticati...
Read more

WIMMount (HSM) causing cluster storage to go redirected (2012r2 DC)

-
looking options resolve error , prevent in future. thanks help. hardware: 2 node dell hv cluster running2012r2 dc 8 nic/ea in multiplex mode 4x hyper-v 4x hosts storage: 2x synology nas, accessed through iscsi hosts , cluster relevant logs: log name:      microsoft-windows-failoverclustering/diagnostic source:        microsoft-windows-failoverclustering date:          event id:      2050 task category: none level:         warning keywords:       user:          system computer:      l description: [dcm] filter wimmount found @ unsafe altitude 180700 log name:      system source:        microsoft-windows-failoverclustering ...
Read more

Failed to delete the test record dcdiag-test-record in zone test.com

-
ps c:\users\administrator.test> dcdiag /test:dns directory server diagnosis performing initial setup:    trying find home server...    home server = dc02    * identified ad forest.    done gathering initial info. doing initial required tests    testing server: default-first-site-name\dc02       starting test: connectivity          ......................... dc02 passed test connectivity doing primary tests    testing server: default-first-site-name\dc02       starting test: dns          dns tests running , not hung. please wait few minutes...          ......................... dc02 passed test dns    running partition tests on : forestdnszones    running partition tests on : domaindnszones    running partition tests on : schema ...
Read more