IBM's Global Security Analysis Lab (GSAL) has done extensive analysis of the Trusted Computing Platform Alliance (TCPA) chip available on some IBM systems. We have the chip running under Linux, and have studied it extensively. In order to clarify a lot of misunderstanding about the chip, we are making available some helpful white papers and open source device drivers for Linux, so that interested people can test and use the chip in an open environment.
White Papers on TCG (TCPA):
* Trusted Computing for Linux
This slide set describes linux software (available in tpm-3.0, below) for trusted boot, integrity measurement, attestation, and protection.
* Trusted Linux Client
This earlier technical paper goes into detail on some of the components of Trusted Computing for Linux
* "Why TCPA"
This white paper describes the goals of the TCPA chip, and shows how it can be used to protect a user's authentication keys and sensitive data against remote attacks.
* "TCPA Misinformation Rebuttal"
This white paper responds point by point to several papers and web pages which have criticized the TCPA chip based on misunderstandings and incorrect analysis.
Source Code for Trusted Computing:
* Trusted Computing for Linux (TPM/EVM/SLIM) support files
This package contains submitted kernel code and related support applications for trusted computing for linux.
The older package with full source code for a Linux device driver for the TCPA chip, along with example programs, as described in our article "Take Control of TCPA", in the August 2003 issue of Linux Journal have moved to:
o http://sourceforge.net/projects/tpmdd
o http://sourceforge.net/projects/trousers