| | 1 | = Trusted Protection Module |
| | 2 | |
| | 3 | Gateworks has an optional TPM on some SBCs. |
| | 4 | |
| | 5 | The below models can optionally have it loaded: |
| | 6 | * Malibu GW8901 |
| | 7 | * Venice GW74xx, GW73xx, GW72xx |
| | 8 | |
| | 9 | The boards can contain an onboard Microchip ATTPM20P-H6MA1-10 TPM connected to the SPI bus. |
| | 10 | |
| | 11 | This is compliant to the Trusted Computing Group (TCG) Trusted Platform Module (TPM) Version 2.0, |
| | 12 | r116 Trusted Platform Module Library. See link here: [https://trustedcomputinggroup.org/ Link] |
| | 13 | |
| | 14 | Cryptographic Support for: |
| | 15 | - HMAC |
| | 16 | - AES-128 |
| | 17 | - SHA-1 |
| | 18 | - SHA-256 |
| | 19 | - ECC BN_P256, ECCNIST_P256 |
| | 20 | -RSA 1024-2048 bit keys |
| | 21 | |
| | 22 | It is controlled via generic TCG SPI Linux driver. TPM 2.0 provides direct access via /dev/tpm0 (with one client at a time), and can be accessed through the tpm2-abrmd resource manager daemon, or kernel-managed access via /dev/tpmrm0 |
| | 23 | |
| | 24 | The TPM device is at /dev/tpm0 |
| | 25 | |
| | 26 | The TPM tool set (over 100 different commands) can be installed with the following command: |
| | 27 | {{{ |
| | 28 | apt install tpm2-tools tpm2-abrmd |
| | 29 | }}} |
| | 30 | |
| | 31 | Example tpm2-tools showing the properties: |
| | 32 | {{{ |
| | 33 | root@jammy-malibu:~# tpm2_getcap properties-fixed |
| | 34 | TPM2_PT_FAMILY_INDICATOR: |
| | 35 | raw: 0x322E3000 |
| | 36 | value: "2.0" |
| | 37 | TPM2_PT_LEVEL: |
| | 38 | raw: 0 |
| | 39 | TPM2_PT_REVISION: |
| | 40 | raw: 0x77 |
| | 41 | value: 1.19 |
| | 42 | TPM2_PT_DAY_OF_YEAR: |
| | 43 | raw: 0x42 |
| | 44 | TPM2_PT_YEAR: |
| | 45 | raw: 0x7DE |
| | 46 | TPM2_PT_MANUFACTURER: |
| | 47 | raw: 0x4D434850 |
| | 48 | value: "MCHP" |
| | 49 | TPM2_PT_VENDOR_STRING_1: |
| | 50 | raw: 0x0 |
| | 51 | value: "" |
| | 52 | etc..... |
| | 53 | |
| | 54 | }}} |
| | 55 | |
