The TPM library specification states that the TPM must comply with NIST
SP800-90 A.
https://trustedcomputinggroup.org/membership/certification/tpm-certified-products/
shows that the TPMs get third party certification, Common Criteria EAL 4+.
While it's theoretically possible that an attacker could compromise
both the TPM vendors and the evaluation agencies, we do have EAL 4+
assurance against both 1 and 2.
On 10/6/2019 8:05 PM, Jarkko Sakkinen wrote:
Kernel has the random number generator for two reasons:
1. To protect against bugs in hwrng's.
2. To protect against deliberate backdoors in hwrng's.
How TPM RNG is guaranteed to protect against both 1 and 2?
