Skip to content
/ HardwareProtectedSsh Public

Enforce TPM remote platform attestation for Linux authentication

License

GPL-3.0 license
7 stars 3 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

hdracer/HardwareProtectedSsh

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

63 Commits
.github/workflows
.github/workflows
 
 
AttestationLib
AttestationLib
 
 
CliTst
CliTst
 
 
TSS.MSR.CPP
TSS.MSR.CPP
 
 
cpprest
cpprest
 
 
libp11platformattestation
libp11platformattestation
 
 
linux
linux
 
 
pam_platform_attestation
pam_platform_attestation
 
 
.gitignore
.gitignore
 
 
HardwareProtectedSsh.sln
HardwareProtectedSsh.sln
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

HardwareProtectedSsh

This project allows bidirectional enforcement of hardware-protected keys for SSH. Trusted Platform Module (TPM) attestation ensures that both parties are using hardware root of trust, a secure host, and non-exportable authentication keys.

$ ./CliTst 
Initializing test of remote platform attestation using local host TPM 2.0 device...
Successfully established an Attestation Identity Key with the Attestation Server
Successfully created a sealed user key
Successfully checked TPM user key with Attestation Server whitelist
Successfully signed and verified and message with the TPM user key

About

Enforce TPM remote platform attestation for Linux authentication

Resources

Readme

License

GPL-3.0 license
Activity

Stars

7 stars

Watchers

3 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages