Trusted Platform Module

GPTKB entity

Statements (169)
Predicate Object
gptkbp:instanceOf gptkb:personal_computer
gptkb:security
gptkb:technical_specification
cryptographic device
gptkbp:abbreviation gptkb:TXT
gptkb:HSM
gptkb:TEE
TPM
gptkbp:alternativeName Hardware_Security_Module
Trusted_Execution_Environment
Trusted_Execution_Technology
Trusted_Platform_Module_specification
hardware_security_module
trusted_execution_environment
gptkbp:appliesTo embedded systems
personal computers
servers
gptkbp:category computer security
crypt
cryptography
information security
hardware security
trusted computing
computer security standard
gptkbp:component enterprise security architecture
cryptographic infrastructure
hardware security architecture
gptkbp:contains gptkb:Attestation_Identity_Key
gptkb:Endorsement_Key
gptkb:Platform_Configuration_Registers
gptkb:Storage_Root_Key
gptkbp:defines Trusted Platform Module
gptkbp:developedBy gptkb:Trusted_Computing_Group
gptkb:Intel
gptkbp:enables digital rights management
secure authentication
secure key storage
secure payment
measured launch environment
trusted applications
attestation of system state
gptkbp:example gptkb:ARM_TrustZone
gptkb:Intel_SGX
gptkb:AMD_SEV
gptkb:Samsung_Knox
gptkb:Apple_Secure_Enclave
gptkbp:feature remote management
audit logging
PCI DSS compliance
FIPS 140-2 compliance
integrity protection
secure key storage
hardware-based security
tamper resistance
confidentiality protection
tamper evidence
hardware-based random number generation
isolated environment
memory isolation
gptkbp:features Intel processors
hardware root of trust
gptkbp:firstPublished 2003
gptkbp:firstReleased 2009
gptkbp:formFactor discrete chip
firmware-based
integrated in chipset
virtual TPM
gptkbp:introducedIn 2006
gptkbp:latestReleaseVersion gptkb:TPM_2.0
2014
gptkbp:manufacturer gptkb:IBM
gptkb:Google_Cloud
gptkb:Entrust
gptkb:Amazon_Web_Services
gptkb:Thales
gptkb:Microsoft_Azure
gptkb:Utimaco
gptkbp:provides encryption
digital signature
decryption
binding
random number generation
secure storage
remote attestation
asymmetric key generation
integrity measurement
sealed storage
unbinding
gptkbp:publishedBy gptkb:Trusted_Computing_Group
gptkbp:purpose device authentication
cryptographic operations
remote attestation
hardware-based security
disk encryption support
platform integrity measurement
secure cryptoprocessor
secure generation and storage of cryptographic keys
secure cryptographic key management
secure execution of code
protection of sensitive data
protect against software-based attacks
gptkbp:relatedStandard gptkb:UEFI
gptkb:FIDO
gptkb:ISO/IEC_11889
gptkbp:relatedTo contactless smart card
Trusted Platform Module
secure enclave
TPM
secure boot
virtualization security
confidential computing
key management service
root of trust
trusted platform module
secure element
cryptoprocessor
gptkbp:requires gptkb:Windows_11
TPM chip
BIOS support
gptkbp:specifies cryptoprocessor standards
gptkbp:standardizedBy gptkb:PCI_Security_Standards_Council
gptkb:NIST
gptkb:GlobalPlatform
gptkb:ISO/IEC_11889
gptkbp:supports gptkb:Credential_Guard
gptkb:Secure_Boot
gptkb:BitLocker
gptkb:Measured_Boot
gptkb:Virtual_Smart_Card
trusted boot
gptkbp:technology gptkb:ARM_TrustZone
gptkb:Intel_TXT
gptkb:Platform_Trust_Technology
Trusted Platform Module
gptkbp:threatModel protects against OS compromise
protects against malware
gptkbp:usedFor computer security
encryption
authentication
digital signatures
decryption
key generation
remote attestation
platform integrity measurement
sealed storage
secure generation and storage of cryptographic keys
key storage
hardware-based authentication
hardware-based security functions
gptkbp:usedIn IoT devices
banking
cloud computing
data centers
embedded systems
personal computers
public key infrastructure
payment systems
cloud services
laptops
mobile devices
servers
enterprise servers
virtualization security
gptkbp:vulnerableTo gptkb:ROCA
physical attacks
side-channel attacks
gptkbp:bfsParent gptkb:microprocessor
gptkb:public_key_infrastructure
gptkbp:bfsLayer 4