TPM-based trusted keys
configname: CONFIG_TRUSTED_KEYS_TPM
Linux Kernel Configuration
└─>Security options
└─>TPM-based trusted keys
In linux kernel since version 5.2 (release Date: 2019-07-07)
Enable use of the Trusted Platform Module (TPM) as trusted key
backend. Trusted keys are random number symmetric keys,
which will be generated and RSA-sealed by the TPM.
The TPM only unseals the keys, if the boot PCRs and other
criteria match.
backend. Trusted keys are random number symmetric keys,
which will be generated and RSA-sealed by the TPM.
The TPM only unseals the keys, if the boot PCRs and other
criteria match.