TPM: Chishoma pane zvese nezve Yakavimbika Platform Module. Uye kushandiswa kwayo muLinux!

Linux Post Install

7 maminitsi

TPM: Chishoma pane zvese nezve Yakavimbika Platform Module. Uye kushandiswa kwayo muLinux!

TPM: Chishoma pane zvese nezve Yakavimbika Platform Module. Uye kushandiswa kwayo muLinux!

Kubva, mazuva ano achangoburitswa Windows 11, uye iyo mashoma hardware zvigadzirwa zvetekinoroji iyo inofanira kuva nayo Makomputa kwaichaiswa, iyo izwi reinozivikanwa «TPM» tekinoroji. Sezvazviri, tekinoroji yakagadzirirwa kupa chengetedzo uye Hardware zvine chekuita nemabasa.

Ndokusaka, isu tichaongorora zvishoma nezve iyo «TPM» tekinoroji uye mashandisiro ayo paGNU / Linux. Sezvo, hazvisi zvekushandisa chete chero Operating system.

Librem Kiyi

Zvakare, ikozvino izvo zve gadza Windows 11 makomputa emazuva ano (+/- makore mashanu) anodikanwa pamwe chete TPM 2.0, CPUs 64 Zvishoma, 4 GB RAM y 64GB ROM, iyo inovhura yakafara mukana kuwedzera kushandiswa kwe GNU / Linux pane mamwe desktop desktop.

TPM uye kushandiswa kwayo paGNU / Linux

Usati watanga zvakadzama, zvirimo pa "TPM" uye mashandisiro ayo paGNU / Linux, isu tinosiya pazasi zvimwe zvinongedzo zve zvakabatana zvakapfuura zvinyorwa nemusoro wenyaya, kuitira kuti avo vanoshuvira kudzamisa chidzidzo pane akasiyana maficha chaiwo e "TPM", vanogona kuzviita zviri nyore mushure mekupedza kuverenga uku:

"Iyo Librem Key USB Security Kiyi ndiyo yekutanga uye chete OpenPGP-yakavakirwa kiyi yekupa iwo Misoro firmware yakadzamidzirwa neiyo tamper-proof bhuti. Yakagadzirirwa kubvumira vashandisi veLibrem Laptops kuti vaone kana paine munhu akanganisa nekombuta yavo software pavanotanga komputa yavo.

Iyo Librem Key inotsigirwa neiyo TPM (Trusted Platform Module) Chip ine Misoro inogoneswa inowanikwa mune nyowani Librem 13 uye 15. Laptop kukanganiswa, kuti vakwanise kuenderera mberi kubva kwavakasiira, kana ikapenya tsvuku zvinoreva kuti iyo laptop yakabatikidzwa nayo."

Librem Kiyi
Nyaya inoenderana:
Purism inotangisa yekutanga tamper-proof USB chengetedzo kiyi yemalaptop
 redhat
Nyaya inoenderana:
Red Hat Enterprise Linux 7.6 Beta Kuburitsa Izvozvi
 coreboot
Nyaya inoenderana:
X11SSH-TF yekutanga server mamaboard kushandisa CoreBoot

TPM: Yakavimbika Platform Module

TPM: Yakavimbika Platform Module

Chii chinonzi TPM?

Zvinoenderana neTrusted Computing Group (TCG)

Maererano ne zviri pamutemo webhusaiti Del Kuvimbwa Komputa Boka, Kana kungoti Anovimbwa Komputa Boka (TCG) muChirungu, iyo «TPM» tekinoroji Inotsanangurwa seinotevera:

"TPM (Yakavimbika Platform Module) ndeye komputa chip (microcontroller) iyo inogona kuchengetedza zvakachengetedzwa zvigadzirwa zvekushambadzira chikuva (PC yako kana laptop). Izvi zvigadzirwa zvinogona kusanganisira mapassword, zvitupa, kana kiyi yekunyorera.

Nekudaro, TPM Chip inogona zvakare kushandiswa kuchengetedza zviyero zvepuratifomu kubatsira kuona kuti chikuva chinoramba chakavimbika. Kuvimbika (kunova nechokwadi chekuti chikuva chinogona kuratidza kuti ndizvo zvazviri) uye kupupura (maitiro anobatsira kuratidza kuti chikuva chakavimbika uye hachina kukanganiswa) matanho akakosha ekuona komputa yakachengeteka munzvimbo dzese. Ma module anovimbwa anogona kushandiswa pamakomputa zvishandiso asiri maPC, senge nharembozha kana netiweki michina."

Rumwe ruzivo rwakakosha uye rwakavimbika pane iyo «TPM» tekinoroji, muChirungu, unogona kuwana zvakananga zvinotevera zvinongedzo kubva pawebhusaiti yeiyo Anovimbwa Komputa Boka (TCG): 1 Ungano y 2 Ungano.

"Trusted Computing Group (TCG) inyanzvi yemakambani epasi rose anoumbwa nemakambani anosvika zana nemakumi maviri anozvipira kugadzira zvigadziriso zvinotsanangura "maTPM" emaPC, ma module ekuvimba ezvimwe zvishandiso, zvivakwa zvezvivakwa zvetrust, maAPI nema protocols anodiwa kushanda kwenzvimbo yakavimbika. Kana iwo maratidziro apedzwa, ivo vanoita kuti zviwanikwe kune tekinoroji nharaunda yekurodha pasi kubva kune yavo webhusaiti."

Maererano naMicrosoft

Zvinoenderana nechinyorwa chiri mu Microsoft yepamutemo zvinyorwa chikamuakadanwa «Yakavimbika Platform Module Technology Overview«la «TPM» tekinoroji Inotsanangurwa seinotevera:

"Unovimbika Platform Module (TPM) tekinoroji yakagadzirirwa kupa Hardware uye chengetedzo inoenderana mashandiro. Iyo TPM chip ndeye yakachengeteka cryptographic processor yakagadzirirwa kuita cryptographic mashandiro. Iyo chip inosanganisira anoverengeka epanyama ekuchengetedza nzira anoita kuti isagadzikane nekukanganisa uye kuchengetedza maficha inodzivirira yakaipa software kubva mukukanganisa."

Microsoft inowedzera kuti mamwe ma chikuru zvakanakira kushandisa iyo «TPM» tekinoroji Ndizvo zvinotevera:

  • Gadzira, chengeta uye kudzikisira mashandisiro emakristptographic makiyi.
  • Shandisa TPM tekinoroji yeplatifomu chishongedzo sisitimu uchishandisa iyo TPM yakasarudzika RSA kiyi, iyo ichazonyorwa yega pachayo.
  • Vimbisa kuvimbika kwepuratifomu kutakura uye kuchengetedza matanho ekuchengetedza.

Pakupedzisira, Microsoft inosimbisa nezve iyo «TPM» tekinoroji kuti:

"Iwo akajairika TPM mabasa anoshandiswa kuhurongwa kutendeseka zviyero uye zvekugadzira uye kushandiswa kwemakiyi. Munguva yebhutsu maitiro ehurongwa, iyo kodhi yebhoti yakatakurwa (inosanganisira firmware uye anoshanda masisitimu ehurongwa) inogona kuyerwa uye kuisirwa TPM. Kuyera kuyerwa kunogona kushandiswa seuchapupu hwekuti system yakatangwa sei uye kuona kuti iyo TPM-based kiyi yaishandiswa chete kana yakakodzera software yaishandiswa kubhootisa iyo system."

Kuisirwa uye kushandiswa kwekutanga paGNU / Linux

Izvozvi izvo, isu tatova nazvo zvakajeka kuti ndiyo «TPM» tekinoroji, isu tinongofanirwa kuziva mapakeji api ekuisa uye kuti ungashandise sei. Uye zvechokwadi, inofanira kunge iri yakambogoneswa in the BIOS / UEFI kubva pakombuta yako, sezvo ichiwanzoremara.

Kuiswa

Chinhu chakanyanya kukosha kuisa mune chero GNU / Linux Distro pakombuta, zvine hukama ne TPM tekinoroji, ndiwo mapakeji anotevera uchishandisa anotevera kuraira kuraira:

apt-get install tpm-tools trousers

Mune zvimwe zviitiko, mamwe mapakeji akafanana akafanana nemaraibhurari, rutsigiro rwekuunganidza, kana kungoita mamwe mapakeji matsva angangodiwa, senge, tpm2-tools. Izvo zviri pachena zvakagadzirirwa kutsigira TPM 2.0. Kuti uone ruzivo rwakadzama nezve aya matatu mapakeji uye mamwe ane hukama, unogona kuwana zvinotevera link mukati me Debian yepamutemo webhusaiti.

Shandisa

Kuti uwane rumwe ruzivo rwakakosha nezve iyo kushandiswa kweTPM Technology paGNU / Linux, unogona kuwana zvinotevera zvinongedzo

  1. TPM - Arch Linux Wiki
  2. TPM.Dev Nharaunda
  3. TPM2-Software Nharaunda
  4. TrouSerS
  5. TPM-Zvishandiso Manpage

Pfupiso: Zvinyorwa zvakasiyana

Resumen

Tinovimba izvi "inobatsira shoma posvo" nezve tekinoroji «TPM (Trusted Platform Module)»kana Yakachengeteka Platform Module muchiSpanish, iyo yakagadzirirwa kupa chengetedzo uye zvine hukama nemahara maficha; ndeyekufarira kukuru uye kushandiswa, kweiyo yese «Comunidad de Software Libre y Código Abierto» uye yemupiro mukuru mukupararira kweinoshamisa, hombe uye kukura ecosystem yezvishandiso zve «GNU/Linux».

Parizvino, kana iwe waifarira izvi publicación, Usamire igovera nevamwe. teregiramuChiratidzoMastodon kana imwe ye Fediverse, ndoda.

Uye yeuka kushanyira peji redu repamba pa «DesdeLinux» kuti uongorore dzimwe nhau, pamwe nekujoinha chiteshi chedu chepamutemo che Teregiramu ye DesdeLinuxNepo, kuti uwane rumwe ruzivo, iwe unogona kushanyira chero Raibhurari yepaindaneti Chemhondoro OpenLibra y jedit, kuwana uye kuverenga mabhuku edhijitari (maPDF) panhau iyi kana mamwe.


Siya yako yekutaura

Your kero e havazobvumirwi ichibudiswa. Raida minda anozivikanwa ne *

*

*

  1. Inotarisira iyo data: Miguel Ángel Gatón
  2. Chinangwa cheiyo data: Kudzora SPAM, manejimendi manejimendi.
  3. Legitimation: Kubvuma kwako
  4. Kutaurirana kwedata
  5. Dhata yekuchengetedza: Dhatabhesi inobatwa neOccentus Networks (EU)
  6. Kodzero: Panguva ipi neipi iwe unogona kudzora, kupora uye kudzima ruzivo rwako