Re: [Tpm4java-users] Problem using GenerateAIKrequest
Brought to you by:
tews
Menu
▾
▴
Re: [Tpm4java-users] Problem using GenerateAIKrequest
|
From: Martin H. <li...@ma...> - 2007-05-01 17:33:56
|
Hello Andrés, all checkReply does is verifying if the hmac of the tpm reply is correct. This is done to prevent a replay attack or modifications by a man-in-the-middle between the program and the tpm. Practically there is no problem if you turn this option off. Other tpm libraries even omit the verification by default. HTH, Martin Andrés Rosado Laitinen schrieb: > Hello, i solved the problem by desactivating the checkReply option > (lowLevel.setCheckReply(false)) but i don't know how important is that the > checkReply option is enabled. I'm trying to do a remote platform > attestation. > > ----- Original Message ----- > From: "Andrés Rosado Laitinen" <and...@te...> > To: <tpm...@li...> > Sent: Sunday, April 22, 2007 9:34 AM > Subject: [Tpm4java-users] Problem using GenerateAIKrequest > > > >> Hello, i receive an error using the example class GenerateAikrequest. >> I'm using linux with tpm-emulator-0.5 this is the error message that i >> receive: >> >> Expected: A0 CD BE 29 EC B3 3B B1 51 CB C1 1F 93 0B AB F3 >> 21 26 9C 7C >> TPM send: 3B 03 84 5A 67 A4 A3 1B 61 85 7E E4 F9 02 66 93 >> 31 04 F9 7D >> java.lang.RuntimeException: de.datenzone.tpm4java.TSSException: reply >> authentication failed >> at >> de.datenzone.tpm4java.TssHighLevelImpl.generateAIK(TssHighLevelImpl.java:130) >> at >> de.datenzone.tpm4java.examples.GenerateAikRequest.main(GenerateAikRequest.java:95) >> Caused by: de.datenzone.tpm4java.TSSException: reply authentication >> failed >> at >> de.datenzone.tpm4java.TSSCoreService.verifyReplyHmac(TSSCoreService.java:2127) >> at >> de.datenzone.tpm4java.TSSCoreService.authGetAndVerify(TSSCoreService.java:2178) >> at >> de.datenzone.tpm4java.TSSCoreService.authGetAndVerify(TSSCoreService.java:2184) >> at >> de.datenzone.tpm4java.TSSCoreService.TPM_LoadKey(TSSCoreService.java:685) >> at >> de.datenzone.tpm4java.TssHighLevelImpl.generateAIK(TssHighLevelImpl.java:126) >> ... 1 more >> >> >> >> ------------------------------------------------------------------------- >> This SF.net email is sponsored by DB2 Express >> Download DB2 Express C - the FREE version of DB2 express and take >> control of your XML. No limits. Just data. Click to get it now. >> http://sourceforge.net/powerbar/db2/ >> _______________________________________________ >> Tpm4java-users mailing list >> Tpm...@li... >> https://lists.sourceforge.net/lists/listinfo/tpm4java-users >> >> > > > ------------------------------------------------------------------------- > This SF.net email is sponsored by DB2 Express > Download DB2 Express C - the FREE version of DB2 express and take > control of your XML. No limits. Just data. Click to get it now. > http://sourceforge.net/powerbar/db2/ > _______________________________________________ > Tpm4java-users mailing list > Tpm...@li... > https://lists.sourceforge.net/lists/listinfo/tpm4java-users > -- Martin Hermanowski http://martin.hermanowski.name https://www.xing.com/profile/Martin_Hermanowski/ |
