From: Simon M. <sim...@in...> - 2009-08-10 15:06:58
|
Hello, i didn't find a way to import an externally created RSA key into the TPM. Could you please describe a way how to do so? How to load the public part is quite clear: KeyPairGenerator generator = KeyPairGenerator.getInstance("RSA"); generator.initialize((int)DeviceDefines.DEVICE_KEY_LENGTH); KeyPair keyPair = generator.generateKeyPair(); TcTpmPubkey pubKeyStruct = TcCrypto.pubJavaToTpmKey((RSAPublicKey)keyPair.getPublic()); TcIRsaKey tpmmKey = context_.createRsaKeyObject(TcTssConstants.TSS_KEY_EMPTY_KEY); pubKey.setAttribData(TcTssConstants.TSS_TSPATTRIB_KEY_BLOB, TcTssConstants.TSS_TSPATTRIB_KEYBLOB_PUBLIC_KEY, pubKeyStruct.getEncoded()); But the private part has a few more troubles. all the best Simon Ronald Tögl wrote: > Hello, > > You could consider to first generate your key in software, create a > backup by any mechanism you prefer and then import it it the TPM and > Finally remove it from the host system. > > Not highly elegant, but it should work just fine.. > > Ronald > > > Simon Mittelberger wrote: > >> We are currently searching for a sort of backup mechanism. >> The Problem is that at the point when the backup blob should be >> created we don't have another TPM, > >> To develop a migration authority to handle this, seems to be too >> much effort, as it is only a proof of concept project. > > > |