Re: [Trustedjava-support] info about tpm quote

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

cas...@al... wrote:
> in my remote attestation the server receives the message (resultQuote,eventLog,aikcertification).
> i have to attest the resultQuote using event log. how can i do?

Typically the server side in an attestation process has to
* check correctness of supplied AIK certificate
* use public key from certificate to verify quote blob signature
* check correctness/freshness of nonce
* check PCR composite digest to be expected value,
  by replaying the extension events in the log

>  Are there documents that explain something about this in details?

AFAIK no.

We do strive to include demo code/tests/javadoc for functions as much as we
can, see the sources and unit tests of jTss/JTssWrapper/JTpmTools etc.,
however, our manpower is limited.

Note that the current Java API is not very highlevel and matches
more the official TCG lowlevel C API. You may learn a lot by following
TrouSerS development, too.
The TCG specs are rather cryptic reading, but if you want an
authorative source, you'll have to bite through.

HTH

-- 
Martin Pirker
IAIK, TU Graz