From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from mailman by lists.gnu.org with archive (Exim 4.43)
	id 1Me2Rs-0007OH-7B
	for mharc-grub-devel@gnu.org; Thu, 20 Aug 2009 03:52:40 -0400
Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43)
	id 1Me2Rq-0007NU-Cj
	for grub-devel@gnu.org; Thu, 20 Aug 2009 03:52:38 -0400
Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43)
	id 1Me2Rp-0007N8-T6
	for grub-devel@gnu.org; Thu, 20 Aug 2009 03:52:38 -0400
Received: from [199.232.76.173] (port=34695 helo=monty-python.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.43) id 1Me2Rp-0007N1-Pr
	for grub-devel@gnu.org; Thu, 20 Aug 2009 03:52:37 -0400
Received: from mx20.gnu.org ([199.232.41.8]:32040)
	by monty-python.gnu.org with esmtps (TLS-1.0:RSA_AES_256_CBC_SHA1:32)
	(Exim 4.60) (envelope-from <michael@gorven.za.net>)
	id 1Me2Rp-0002rx-8M
	for grub-devel@gnu.org; Thu, 20 Aug 2009 03:52:37 -0400
Received: from mammon.mene.za.net ([78.46.253.195] helo=mail.mene.za.net)
	by mx20.gnu.org with esmtp (Exim 4.60)
	(envelope-from <michael@gorven.za.net>) id 1Me2Ro-0002cd-52
	for grub-devel@gnu.org; Thu, 20 Aug 2009 03:52:36 -0400
Received: from mail.mene.za.net (localhost [127.0.0.1])
	by mail.mene.za.net (Postfix) with ESMTP id 772A87E2F6
	for <grub-devel@gnu.org>; Thu, 20 Aug 2009 09:52:34 +0200 (SAST)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=gorven.za.net; h=from:to
	:subject:date:references:in-reply-to:mime-version:content-type
	:content-transfer-encoding:message-id; s=alpha; bh=fIcJMtORKEX9J
	nmBpT4uJgtHBL8=; b=KWE8XiGGryV3cDHMMVmORDjjP9c121mfGvrmt9p3vSJs+
	ollUTE20CN0WY/2kf7s7xiPIxI0y6LVcKaTaf+fnP0vVyu7DbCVgrNldPpiKU2Eb
	ob/1H7OaxD3eGsZNinTxQTqfcOXZLFZpm4ggNxNLoZ/vK1yeBrEwySdVyaXy9k=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gorven.za.net; h=from:to
	:subject:date:references:in-reply-to:mime-version:content-type
	:content-transfer-encoding:message-id; q=dns; s=alpha; b=FzgizkW
	t2tI83Jkcfa/Lmge7E+nsxSYo6Cb9Bd4Xmmu9AYJRslTDmlTw/P84qPUOvdSI2ie
	Rb4SzULLosJHBv7viJ7H4od4GO5YzCsdpjUswCX/gDfYdhTixqoJEYn3zg5OQxwP
	Td8aX38tFNvd0E+Umfx6czHhqdSaZ9a2iVsI=
Received: from molech (dsl-241-125-225.telkomadsl.co.za [41.241.125.225])
	by mail.mene.za.net (Postfix) with ESMTPSA id 8DC627E2EE
	for <grub-devel@gnu.org>; Thu, 20 Aug 2009 09:52:33 +0200 (SAST)
From: Michael Gorven <michael@gorven.za.net>
To: The development of GRUB 2 <grub-devel@gnu.org>
Date: Thu, 20 Aug 2009 09:52:28 +0200
User-Agent: KMail/1.9.10
References: <4A8BDB5B.5000407@labri.fr>
	<200908200941.55245.michael@gorven.za.net>
	<a5d587fb0908200049x6b666368v2130948b510d7627@mail.gmail.com>
In-Reply-To: <a5d587fb0908200049x6b666368v2130948b510d7627@mail.gmail.com>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="nextPart1629728.VbX2DBIO2k";
	protocol="application/pgp-signature"; micalg=pgp-sha1
Content-Transfer-Encoding: 7bit
Message-Id: <200908200952.29010.michael@gorven.za.net>
X-Detected-Operating-System: by mx20.gnu.org: GNU/Linux 2.6 (newer, 2)
X-detected-operating-system: by monty-python.gnu.org: GNU/Linux 2.6,
	seldom 2.4 (older, 4)
Subject: Re: TPM support status ?
X-BeenThere: grub-devel@gnu.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: The development of GRUB 2 <grub-devel@gnu.org>
List-Id: The development of GRUB 2 <grub-devel.gnu.org>
List-Unsubscribe: <http://lists.gnu.org/mailman/listinfo/grub-devel>,
	<mailto:grub-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/pipermail/grub-devel>
List-Post: <mailto:grub-devel@gnu.org>
List-Help: <mailto:grub-devel-request@gnu.org?subject=help>
List-Subscribe: <http://lists.gnu.org/mailman/listinfo/grub-devel>,
	<mailto:grub-devel-request@gnu.org?subject=subscribe>
X-List-Received-Date: Thu, 20 Aug 2009 07:52:38 -0000

--nextPart1629728.VbX2DBIO2k
Content-Type: text/plain;
  charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline

On Thursday 20 August 2009 09:49:06 Michal Suchanek wrote:
> 2009/8/20 Michael Gorven <michael@gorven.za.net>:
> > On Wednesday 19 August 2009 21:21:28 Michal Suchanek wrote:
> >> Tell me one technical benefit of TPM over coreboot.
> >
> > Coreboot doesn't provide protected storage of secrets (e.g. harddrive
> > decryption keys).
>
> TPM does not either at the time the BIOS is loaded. Remember, it's the
> CPU what's running the BIOS, not the TPM chip.
>
> Only after BIOS enables TPM or coreboot enables any crypto device you
> choose you get any secrets or keys.

So? It's still protected storage. You can read a BIOS chip, but you can't j=
ust=20
read the contents of a TPM chip.

Michael

=2D-=20
http://michael.gorven.za.net
PGP Key ID 1E016BE8
S/MIME Key ID AAF09E0E

--nextPart1629728.VbX2DBIO2k
Content-Type: application/pgp-signature; name=signature.asc 
Content-Description: This is a digitally signed message part.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
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=n+6v
-----END PGP SIGNATURE-----

--nextPart1629728.VbX2DBIO2k--