본문 바로가기
보안

tpm 키 테스트

by Joseph.Lee 2021. 8. 3.

tpm2_createprimary owner

결과 : 매 실행 동일, 재부팅 해도 동일

$ tpm2_createprimary -C o --key-algorithm=rsa -c prim.ctx
name-alg:
  value: sha256
  raw: 0xb
attributes:
  value: fixedtpm|fixedparent|sensitivedataorigin|userwithauth|restricted|decrypt
  raw: 0x30072
type:
  value: rsa
  raw: 0x1
exponent: 65537
bits: 2048
scheme:
  value: null
  raw: 0x10
scheme-halg:
  value: (null)
  raw: 0x0
sym-alg:
  value: aes
  raw: 0x6
sym-mode:
  value: cfb
  raw: 0x43
sym-keybits: 128
rsa: a8c7064cfae35a327669fec799e84fa0c6d56ea3038ac9c46c3dc98d56c45c0f4e153d265eaf9132189dc1382e689e04008d1cf5d94765bf6ed27593167304d1dc5a104433bcfeeae57a33b7e92d8ce4c75bac64f
b

tpm2_createprimary ek

결과 : 매 실행 동일, 재부팅 해도 동일

$ tpm2_createprimary -C e --key-algorithm=rsa -c prim.ctx
name-alg:
  value: sha256
  raw: 0xb
attributes:
  value: fixedtpm|fixedparent|sensitivedataorigin|userwithauth|restricted|decrypt
  raw: 0x30072
type:
  value: rsa
  raw: 0x1
exponent: 65537
bits: 2048
scheme:
  value: null
  raw: 0x10
scheme-halg:
  value: (null)
  raw: 0x0
sym-alg:
  value: aes
  raw: 0x6
sym-mode:
  value: cfb
  raw: 0x43
sym-keybits: 128
rsa: ba179525dad3304b5ed23a32c1eded1df0fc8bcd080eccef928ccf34045e6627698545f55e18e8d73049f15b117c3fa6bd157a7b3220df194928913bedd6bae760c5169949c22eeed5bf749a2727d2db8b8c313cb

tpm2_createek

결과 : 매 실행 동일, 재부팅 해도 동일

# tpm2_createek -c ek.ctx -u ek.pub && tpm2_readpublic -c ek.ctx
name: 000bdd23efef36ab759e6d687191b8a029cdd053d905f37f9cc517c257f49120854b
qualified name: 000b7113ba3f44b3eb7029ef55a6521aa548ae08de4904d1b55134faa2ad526905c9
name-alg:
  value: sha256
  raw: 0xb
attributes:
  value: fixedtpm|fixedparent|sensitivedataorigin|adminwithpolicy|restricted|decrypt
  raw: 0x300b2
type:
  value: rsa
  raw: 0x1
exponent: 65537
bits: 2048
scheme:
  value: null
  raw: 0x10
scheme-halg:
  value: (null)
  raw: 0x0
sym-alg:
  value: aes
  raw: 0x6
sym-mode:
  value: cfb
  raw: 0x43
sym-keybits: 128
rsa: b0d10cbb75a152604457104f6acdf70f53177c06c0d6ffadbea96d9896230d2fd02773e48ecc0a67479e46116eb32621646f78711e0e0c2997b46c744a9cb1846d6abe7b3d8c64f7579ab2be1eaa6cb9e3f236187
authorization policy: 837197674484b3f81a90cc8d46a5d724fd52d76e06520b64f2a1da1b331469aa
반응형

댓글