Statements (169)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:personal_computer
gptkb:security gptkb:technical_specification cryptographic device |
| gptkbp:abbreviation |
gptkb:TXT
gptkb:HSM gptkb:TEE TPM |
| gptkbp:alternativeName |
Hardware_Security_Module
Trusted_Execution_Environment Trusted_Execution_Technology Trusted_Platform_Module_specification hardware_security_module trusted_execution_environment |
| gptkbp:appliesTo |
embedded systems
personal computers servers |
| gptkbp:category |
computer security
crypt cryptography information security hardware security trusted computing computer security standard |
| gptkbp:component |
enterprise security architecture
cryptographic infrastructure hardware security architecture |
| gptkbp:contains |
gptkb:Attestation_Identity_Key
gptkb:Endorsement_Key gptkb:Platform_Configuration_Registers gptkb:Storage_Root_Key |
| gptkbp:defines |
Trusted Platform Module
|
| gptkbp:developedBy |
gptkb:Trusted_Computing_Group
gptkb:Intel |
| gptkbp:enables |
digital rights management
secure authentication secure key storage secure payment measured launch environment trusted applications attestation of system state |
| gptkbp:example |
gptkb:ARM_TrustZone
gptkb:Intel_SGX gptkb:AMD_SEV gptkb:Samsung_Knox gptkb:Apple_Secure_Enclave |
| gptkbp:feature |
remote management
audit logging PCI DSS compliance FIPS 140-2 compliance integrity protection secure key storage hardware-based security tamper resistance confidentiality protection tamper evidence hardware-based random number generation isolated environment memory isolation |
| gptkbp:features |
Intel processors
hardware root of trust |
| gptkbp:firstPublished |
2003
|
| gptkbp:firstReleased |
2009
|
| gptkbp:formFactor |
discrete chip
firmware-based integrated in chipset virtual TPM |
| gptkbp:introducedIn |
2006
|
| gptkbp:latestReleaseVersion |
gptkb:TPM_2.0
2014 |
| gptkbp:manufacturer |
gptkb:IBM
gptkb:Google_Cloud gptkb:Entrust gptkb:Amazon_Web_Services gptkb:Thales gptkb:Microsoft_Azure gptkb:Utimaco |
| gptkbp:provides |
encryption
digital signature decryption binding random number generation secure storage remote attestation asymmetric key generation integrity measurement sealed storage unbinding |
| gptkbp:publishedBy |
gptkb:Trusted_Computing_Group
|
| gptkbp:purpose |
device authentication
cryptographic operations remote attestation hardware-based security disk encryption support platform integrity measurement secure cryptoprocessor secure generation and storage of cryptographic keys secure cryptographic key management secure execution of code protection of sensitive data protect against software-based attacks |
| gptkbp:relatedStandard |
gptkb:UEFI
gptkb:FIDO gptkb:ISO/IEC_11889 |
| gptkbp:relatedTo |
contactless smart card
Trusted Platform Module secure enclave TPM secure boot virtualization security confidential computing key management service root of trust trusted platform module secure element cryptoprocessor |
| gptkbp:requires |
gptkb:Windows_11
TPM chip BIOS support |
| gptkbp:specifies |
cryptoprocessor standards
|
| gptkbp:standardizedBy |
gptkb:PCI_Security_Standards_Council
gptkb:NIST gptkb:GlobalPlatform gptkb:ISO/IEC_11889 |
| gptkbp:supports |
gptkb:Credential_Guard
gptkb:Secure_Boot gptkb:BitLocker gptkb:Measured_Boot gptkb:Virtual_Smart_Card trusted boot |
| gptkbp:technology |
gptkb:ARM_TrustZone
gptkb:Intel_TXT gptkb:Platform_Trust_Technology Trusted Platform Module |
| gptkbp:threatModel |
protects against OS compromise
protects against malware |
| gptkbp:usedFor |
computer security
encryption authentication digital signatures decryption key generation remote attestation platform integrity measurement sealed storage secure generation and storage of cryptographic keys key storage hardware-based authentication hardware-based security functions |
| gptkbp:usedIn |
IoT devices
banking cloud computing data centers embedded systems personal computers public key infrastructure payment systems cloud services laptops mobile devices servers enterprise servers virtualization security |
| gptkbp:vulnerableTo |
gptkb:ROCA
physical attacks side-channel attacks |
| gptkbp:bfsParent |
gptkb:microprocessor
gptkb:public_key_infrastructure |
| gptkbp:bfsLayer |
4
|