On Tue Apr 2, 2024 at 10:30 PM EEST, Ken Goldman wrote: > On 3/31/2024 12:52 PM, Gabríel Arthúr Pétursson wrote: > > The TPM specifications have a standardized set of templates for the > > Endorsement Keys, and a recommendation on a template to > > create/provision the shared SRK. > > The original TCG guidance document for an SRK used arrays of zeros for > the unique field. > > This was either a holdover from TPM 1.2, where arrays were 20 bytes, > or a misinterpretation of text that said: NULL. > > The reality is that it's a TPM2B, and the size(s) can be zero. > > The answer for the EK is different. It has to use the TCG > standard. The EK is not a 'guidance document'. Does anyone follow TCG's provisioning guide? I.e. is it implemented "in the industry"? I'm just trying to understand the real value of this document. BR, Jarkko
