| Both sides previous revision Previous revision Next revision | Previous revision |
| public:research:tpm_live [2020-09-22 15:06] – [Edit - Panel] xsvenda | public:research:tpm_live [2023-02-16 09:43] (current) – xdufka1 |
|---|
| ====== Research: Analysis of Trusted Platform Module chips ====== | ====== Research: Analysis of Trusted Platform Module chips ====== |
| ~~NOTOC~~ | ~~NOTOC~~ |
| | <callout type="danger" icon="true">This guide is already out of date. Please use the version on page [[https://crocs.fi.muni.cz/tpm | |
| | https://crocs.fi.muni.cz/tpm]]. </callout> |
| | |
| <text size="large"> | <text size="large"> |
| The goal of the research is to get a better understanding of the Trusted Platform Modules ecosystem. Such information is vital for the designers and developers using this technology, allowing then to answer questions like: What fraction of devices has TPM chip? Which cryptographic algorithms are widely supported? What is the overhead of computing a digital signature? | The goal of the research is to get a better understanding of the Trusted Platform Modules ecosystem. Such information is vital for the designers and developers using this technology, allowing then to answer questions like: What fraction of devices has TPM chip? Which cryptographic algorithms are widely supported? What is the overhead of computing a digital signature? |
| |
| - Prepare an empty USB drive with at least 4GB size (IMPORTANT: all content will be erased) | - Prepare an empty USB drive with at least 4GB size (IMPORTANT: all content will be erased) |
| - Download live USB image: https://www.fi.muni.cz/~xzatovic/algtest-usb-disk.img and save to disk (e.g., folder C:\TPM\) | - Download live USB image: [[https://drive.google.com/file/d/1szV-cMR2k7Ag93lpv7hdGpMG6UykZzle/view?usp=sharing|algtest-usb-disk.img]] and save to disk (e.g., folder C:\TPM\) |
| - Download and install [[https://www.balena.io/etcher/|Balena Etcher]] (Windows, Linux, Mac) to create bootable USB drive. (Alternatively, you may use [[https://rufus.ie/|Rufus]] instead (Windows only)). | - Download and install [[https://www.balena.io/etcher/|Balena Etcher]] (Windows, Linux, Mac) to create bootable USB drive. (Alternatively, you may use [[https://rufus.ie/|Rufus]] instead (Windows only)). |
| - Run Balena Etcher, click //Select image// and browse for previously downloaded algtest-usb-disk.img on your disk | - Run Balena Etcher, click //Select image// and browse for previously downloaded algtest-usb-disk.img on your disk |
| |
| <TEXT align="center"> | <TEXT align="center"> |
| <button>[[https://www.balena.io/etcher/|Download Balena Etcher]]</button>\_\_\_<button>[[https://drive.google.com/file/d/1drGNpZPv9cGP46FgEzDGF9VV1yudQOK5/view?usp=sharing|Download USB image]] </button> \_\_\_[[https://www.fi.muni.cz/~xsvenda/algtest-usb-disk_v0.1.0.img|Secondary USB image mirror]] \_\_\_ [[https://drive.google.com/drive/folders/1_NPpOyKkzgZw4YE9-Qu-vRiwns5aYnXd?usp=sharing | GPG signature]]\_[[https://keybase.io/petrs#show-public | (key)]] | <button>[[https://www.balena.io/etcher/|Download Balena Etcher]]</button>\_\_\_<button>[[https://drive.google.com/file/d/1szV-cMR2k7Ag93lpv7hdGpMG6UykZzle/view?usp=sharing|Download USB image]] </button> \_\_\_[[https://www.fi.muni.cz/~xsvenda/algtest-usb-disk_v0.1.1.img|Secondary mirror]] \_\_\_ [[https://drive.google.com/drive/folders/1rrzuAhf4v-98SvaSLWdl9Hnx1O2N36GF?usp=sharing | GPG signature]] \_ [[https://keybase.io/petrs#show-public | (key)]] |
| </TEXT> | </TEXT> |
| |
| - Plug the USB drive, new drive with label ''algtest_res'' is mounted (e.g., 'E:\'). | - Plug the USB drive, new drive with label ''algtest_res'' is mounted (e.g., 'E:\'). |
| - Locate file(s) with a file name in the form of ''algtest_result_xxxxxx-xxxx-xxxx-xxxx-xxxxxxxx.zip''. | - Locate file(s) with a file name in the form of ''algtest_result_xxxxxx-xxxx-xxxx-xxxx-xxxxxxxx.zip''. |
| - Visit page ''https://is.muni.cz/dok/depository_in?lang=en;vybos_vzorek=4085'' and follow instructions how to upload the file (no authentication required, just drop the files). Alternatively, send email to Petr Svenda <svenda@fi.muni.cz> with file ''algtest_result_xxx.zip'' attached. | - Visit page ''https://is.muni.cz/dok/depository_in?lang=en;vybos_vzorek=4085'' and follow instructions how to upload the file (no authentication required, just drop the files). Alternatively, send email to Petr Svenda <tpm.crocs@gmail.com> with file ''algtest_result_xxx.zip'' attached. |
| |
| |
| <TEXT align="center"> | <TEXT align="center"> |
| <button type="success" icon="fa fa-fw fa-upload">[[https://is.muni.cz/dok/depository_in?lang=en;vybos_vzorek=4085|Upload collected data here]]</button>\_ | <button type="success" icon="fa fa-fw fa-upload">[[https://is.muni.cz/dok/depository_in?lang=en;vybos_vzorek=4085|Upload collected data here]]</button>\_ |
| or send data by email to %%<%%<svenda@fi.muni.cz>%%>%%. | or send data by email to %%<%%<tpm.crocs@gmail.com>%%>%%. |
| </TEXT> | </TEXT> |
| |
| |
| <text type="muted"></text> | <text type="muted"></text> |
| | |
| | === Issue: Solutions below does not solve the problem === |
| | **Solution:** If you have any issue which solutions below will not help with, please notify us at <tpm.crocs@gmail.com>. |
| |
| === Issue: The bootable image cannot be downloaded === | === Issue: The bootable image cannot be downloaded === |
| **Solution:** Download from the secondary backup location. Please notify us at svenda@fi.muni.cz. | **Solution:** Download from the secondary backup location. Please notify us at tpm.crocs@gmail.com. |
| |
| ---- | ---- |
| |
| Please submit the results even if the error persists. | Please submit the results even if the error persists. |
| | |
| | ---- |
| | === Issue: I want to see the source code and build live image myself === |
| | **Solution:** You are more than welcome, please visit https://github.com/danzatt/tpm2_algtest_live for live image builder repository and https://github.com/danzatt/tpm2-algtest (collection tool itself). |
| |
| ---- | ---- |
| |
| **Data we collect:** | **Data we collect:** |
| * Device vendor and type (e.g., ''Lenovo ThinkBook 15''). | * Device vendor, type (e.g., ''Lenovo ThinkBook 15'') and BIOS version. |
| * TPM vendor, firmware version (e.g., ''Intel 401.1.0.0'') and TPM version-related information. | * TPM vendor, firmware version (e.g., ''Intel 401.1.0.0'') and TPM version-related information. |
| * TPM metadata (''TPM_PT_xxx'' properties like ''TPM_PT_REVISION'', ''TPM_PT_MANUFACTURER'' or ''TPM_PT_PCR_COUNT'' – see file ''Quicktest_properties-fixed.txt'' and ''Quicktest_properties-variable.txt'' for full list). | * TPM metadata (''TPM_PT_xxx'' properties like ''TPM_PT_REVISION'', ''TPM_PT_MANUFACTURER'' or ''TPM_PT_PCR_COUNT'' – see file ''Quicktest_properties-fixed.txt'' and ''Quicktest_properties-variable.txt'' for full list). |