Madshrimps Forum Madness

Madshrimps Forum Madness (https://www.madshrimps.be/vbulletin/)
-   WebNews (https://www.madshrimps.be/vbulletin/f22/)
-   -   Intel now suffers from TPM-FAIL (https://www.madshrimps.be/vbulletin/f22/intel-now-suffers-tpm-fail-191695/)

Stefan Mileschin 15th November 2019 09:12
Intel now suffers from TPM-FAIL
 
Allows an attacker to retrieve cryptographic keys

Intel has fixed two vulnerabilities discovered by a team of academics called TPM-FAIL that could allow an attacker to retrieve cryptographic keys stored inside TPMs.

TPM stands for Trusted Platform Module and in the early days TPMs were separate chips added to a motherboard where a CPU would store and manage sensitive information such as cryptographic keys.

They were used to ensure hardware integrity during the boot-up process or to attest various cryptographic operations, such as handling digital certificates, ensuring HTTPS connections on servers, or verifying authentication-related processes.

With the rise of smart devices, there was no room for a separate TPM chipset on all devices and they became software in firmware-based known as fTPMs.

Boffins at Worcester Polytechnic Institute (USA), the University of Lübeck (Germany), and the University of California, San Diego (USA) have disclosed two vulnerabilities that impact two very widely used TPM solutions.

The first vulnerability is CVE-2019-11090 and impacts Intel's Platform Trust Technology (PTT).

https://fudzilla.com/news/49794-inte...-from-tpm-fail


All times are GMT +1. The time now is 06:51.

Powered by vBulletin® - Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO