Enforce TPM remote platform attestation for Linux authentication
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
AttestationLib
CliTst
TSS.MSR.CPP
libp11platformattestation
linux
pam_platform_attestation
.gitignore
HardwareProtectedSsh.sln
LICENSE
README.md

README.md

HardwareProtectedSsh

This project allows bidirectional enforcement of hardware-protected keys for SSH. Trusted Platform Module (TPM) attestation ensures that both parties are using hardware root of trust, a secure host, and non-exportable authentication keys.

$ ./CliTst 
Initializing test of remote platform attestation using local host TPM 2.0 device...
Successfully established an Attestation Identity Key with the Attestation Server
Successfully created a sealed user key
Successfully checked TPM user key with Attestation Server whitelist
Successfully signed and verified and message with the TPM user key