tpm.dev.tutorials/Attestation/TPM2_MakeCredential.md
2021-04-28 21:42:43 -05:00

477 B

TPM2_MakeCredential()

TPM2_MakeCredential() takes an EKpub, the name of an object in a TPM identified by that EKpub, and a small secret, and it encrypts {name, secret} to the EKpub.

Nothing terribly interesting happens here. All the interesting semantics are on the TPM2_ActivateCredential() side.

Together with TPM2_ActivateCredential(), this function can be used to implement attestation protocols.