[gnutls-devel] GnuTLS | Deprecate TPM 1.2 code (#101)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Fri Oct 26 00:05:53 CEST 2018


TPMv2.0 is a completely different beast, but that doesn't in itself render the TPMv1.2 support obsolete.
The TPMv1.2 hardware is still in common use.

The TPMv2.0 model still doesn't lend itself well to being exposed via PKCS#11, just as TPMv1.2 didn't. There is a different format for the PEM storage of wrapped keys, and there are different fields to be included in a TPMv2.0-capable update to the TPM URI draft, but I think it still makes sense to support them in the same way we do TPMv1.2.

Sure, it sucks a bit that TPMv2.0 is so completely different — and it sucks that we have two separate TSS2 library implementations we might want to be able to use — but I think we should.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/issues/101#note_111951506
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20181025/b9bcfba3/attachment.html>


More information about the Gnutls-devel mailing list