Open Platform Trust Services is a proof-of-concept (PoC) and reference implementation of Platform Trust Services (PTS) which is defined by the Trusted Computing Group.
This pts use two integrity manifest, platform and runtime. The platform manifest covers BIOS integrity. As it stands, no PC BIOS vender provides a manifest. thus we create the manifest from existing PC BIOS, The eventlog is stored at ACPI Table and Linux Kenrel supports to access that.
The runtime manifest will cover Bootloader, Operating System and Virtual Machine Monitor.
Vendor | Type | Comments |
Lenovo | Thinkpad X60,X61,T60,T61 etc | pls. update the BIOS |
Panasonic | W7,Y7, etc |
Name | Status | Comments |
KNOPPIX511 Trusted Computing Geeks | VALID | Linux-IMA |
Other Linux based Operating Systems are possible to support.
ToolsCommandReference
TcdemoCommandReference
TPM v1.2 Error Code Cheat Sheet
TSS v1.2 Error Code Cheat Sheet
LinuxDistroComparisonTable
HackingLinuxTpmDeviceDriver
Distro | Release | bootloader (patch) | Kernel (patch) |
CentOS 5 | (grub-ima) | 2.6.18 | |
Fedora 7 | 2007/5/31 | (grub-ima) | 2.6.21 |
Fedora 8 | 2007/11/8 | (grub-ima) | 2.6.23 |
Fedora 9 | 2008/5/14 | grub-0.97-33 (grub-ima) | 2.6.25 - 2.6.27.25 (ibm_ima_8.5_2.6.27.6.patch) |
Fedora 10 | 2008/11/25 | grub-0.97-38 (grub-0.97-38.fc10.ima-1.1.0.0.patch) | 2.6.27 - 2.6.27.41 (ibm_ima_8.5_2.6.27.6.patch) |
Fedora 11 | 2009/6/9 | grub-0.97-50 (grub-ima) | 2.6.29 - 2.6.30.10 (ibm_ima_2.6.29.1.patch) |
Fedora 12 | 2009/11/17 | grub-0.97-60 (grub-ima) | 2.6.31 - 2.6.31.12 (need fix for iTPM) |
Ubuntu Hardy | 2008/4/24 | (grub-ima) | 2.6.24 (ibm_ima_8.3_2.6.24.3.patch) |
Ubuntu Intrepid | 2008/10/30 | (grub-0.97-29ubuntu45-ima-1.1.0.0.patch) | 2.6.27 (ibm_ima_8.5_2.6.27.6.patch) |
Ubuntu Jaunty | 2009/4/23 | (grub-0.97-29ubuntu45-ima-1.1.0.0.patch) | 2.6.28 |
Ubuntu Kermic | 2009/10/29 | N/A (grub2) | 2.6.31 - 2.6.31-14 |
Ubuntu Lucid | 2010/4/29 | N/A (grub2) | ? |