DOCSLIB.ORG

TCG PC Client Specific Implementation Specification for Conventional BIOS

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
TCG PC Client Specific Implementation Specification for Conventional BIOS TCG PC Client Specific Implementation Specification For Conventional BIOS Version 1.20 FINAL Revision 1.00 July 13, 2005 For TPM Family 1.2; Level 2 Copyright © 2005 Trusted Computing Group, Incorporated. THIS SPECIFICATION IS PROVIDED "AS IS" WITH NO WARRANTIES WHATSOEVER, INCLUDING ANY WARRANTY OF MERCHANTABILITY, NONINFRINGEMENT, FITNESS FOR ANY PARTICULAR PURPOSE, OR ANY WARRANTY OTHERWISE ARISING OUT OF ANY PROPOSAL, SPECIFICATION OR SAMPLE. Without limitation, TCG disclaims all liability, including liability for infringement of any proprietary rights, relating to use of information in this specification and to the implementation of this specification, and TCG disclaims all liability for cost of procurement of substitute goods or services, lost profits, loss of use, loss of data or any incidental, consequential, direct, indirect, or special damages, whether under contract, tort, warranty or otherwise, arising in any way out of use or reliance upon this specification or any information herein. No license, express or implied, by estoppel or otherwise, to any TCG or TCG member intellectual property rights is granted herein. Except that a license is hereby granted by TCG to copy and reproduce this specification for internal use only. Contact the Trusted Computing Group at http://trustedcomputinggroup.org for information on specification licensing through membership agreements. Any marks and brands contained herein are the property of their respective owners. TCG Final TCG Copyright 2005 Change History Revision Date Description 1.00 July 13, 2005 • Initial release of Version 1.20. Specification Version 1.2; Revision 1.00 2 TCG PC Client Implementation for Conventional BIOS TCG Final TCG Copyright 2005 Contents 1. Introduction and Concepts.............................................................................................................................. 13 1.1 PC Client Specific Architecture ........................................................................................................... 14 1.2 PC Client Concepts............................................................................................................................. 16 1.2.1 Host Platform TPM....................................................................................................................... 16 1.2.2 Immutable .................................................................................................................................... 16 1.2.3 Trusted Building Block (TBB)....................................................................................................... 16 1.2.4 Host Platform ............................................................................................................................... 16 1.2.5 Non-host Platforms ...................................................................................................................... 16 1.2.6 System ......................................................................................................................................... 17 1.2.7 Host Platform Reset..................................................................................................................... 17 1.2.7.1 Types .......................................................................................................................................... 17 1.2.7.2 Host Platform CPU(s) and Components..................................................................................... 18 1.2.7.3 TPM Reset .................................................................................................................................. 18 1.2.8 PCI Option ROM Request for Reset............................................................................................ 18 1.2.9 Trusted Process........................................................................................................................... 18 1.2.10 Roots of Trust (RTM) ................................................................................................................... 18 1.2.10.1 Root of Trust for Measurement (RTM)........................................................................................ 18 1.2.10.2 Core Root of Trust for Measurement (CRTM) ............................................................................ 18 1.2.10.3 Privacy Setting and the Scope of the RTM................................................................................. 18 1.2.11 Boot State Transition ................................................................................................................... 19 1.2.12 Establishing the Chain of Trust.................................................................................................... 19 1.2.12.1 Bindings ...................................................................................................................................... 19 1.2.13 Locality States.............................................................................................................................. 19 1.2.13.1 Locality State Definition .............................................................................................................. 20 1.2.13.2 Locality State Relationship.......................................................................................................... 20 1.3 Overview of the Measurement Process .............................................................................................. 21 1.3.1 Usage and Optimization of Hash Functions ................................................................................ 22 1.4 PC Client-specific Definitions .............................................................................................................. 23 1.4.1 BIOS Recovery Mode .................................................................................................................. 23 1.4.2 Host Platform CPU....................................................................................................................... 23 1.4.3 Core RTM (CRTM)....................................................................................................................... 24 1.4.4 Dynamic Operating System ......................................................................................................... 24 1.4.5 Initial Program Loader Code (IPL Code) ..................................................................................... 24 1.4.6 Initial Program Loader Image (IPL Data) ..................................................................................... 24 Specification Version 1.2; Revision 1.00 3 TCG PC Client Implementation for Conventional BIOS TCG Final TCG Copyright 2005 1.4.7 Initial Program Loader Image (IPL Image)................................................................................... 24 1.4.8 Measurement and Measure.........................................................................................................24 1.4.9 Manufacturer................................................................................................................................ 25 1.4.10 Motherboard................................................................................................................................. 25 1.4.11 Operating System Present State ................................................................................................. 25 1.4.12 Pre-Operating System State........................................................................................................ 25 1.4.13 Static Operating System .............................................................................................................. 25 1.4.14 Trusted Building Block (TBB)....................................................................................................... 25 1.5 TCG Specification Dependency and Naming ..................................................................................... 26 1.5.1 “This” Specification ...................................................................................................................... 26 1.5.2 TPM Interface Specification (TIS)................................................................................................ 26 1.5.3 Protection Profile.......................................................................................................................... 26 1.5.4 TCG Architecture, Version 1.2..................................................................................................... 26 1.5.5 TCG Main Specification ............................................................................................................... 26 1.5.6 TCG TSS Specification ................................................................................................................ 26 1.6 External Specifications........................................................................................................................ 27 1.6.1 Plug and Play BIOS Specification................................................................................................27 1.6.2 Advanced Configuration and Power Interface Specification........................................................ 27 1.6.3 BIOS Boot Specification............................................................................................................... 27 1.6.4 Boot Integrity Services Application Programming Interface ........................................................ 27 1.6.5
Load more

Recommended publications
  • HP Iscsi Boot for Windows User Guide
    HP iSCSI Boot for Windows User Guide Part Number 434706-00A September 2007 © Copyright 2007 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein. Confidential computer software. Valid license from HP required for possession, use or copying. Consistent with FAR 12.211 and 12.212, Commercial Computer Software, Computer Software Documentation, and Technical Data for Commercial Items are licensed to the U.S. Government under vendor’s standard commercial license. Audience assumptions This document is for the person who installs, administers, and troubleshoots servers and storage systems. HP assumes you are qualified in the servicing of computer equipment and trained in recognizing hazards in products with hazardous energy levels. Contents Overview..................................................................................................................................... 4 iSCSI boot for Windows overview ............................................................................................................... 4 Limitations ................................................................................................................................................ 5 System
    [Show full text]
  • Chelsio T5/T4 Unified Boot for Linux & Windows
    noteIf no This document and related products are distributed under licenses restricting their use, copying, distribution, and reverse-engineering. No part of this document may be reproduced in any form or by any means without prior written permission by Chelsio Communications. All third party trademarks are copyright of their respective owners. THIS DOCUMENTATION IS PROVIDED “AS IS” AND WITHOUT ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE USE OF THE SOFTWARE AND ANY ASSOCIATED MATERIALS (COLLECTIVELY THE “SOFTWARE”) IS SUBJECT TO THE SOFTWARE LICENSE TERMS OF CHELSIO COMMUNICATIONS, INC. Chelsio Communications (Headquarters) Chelsio (India) Private Limited 370 San Aleso Ave. Subramanya Arcade, Floor 3, Tower B Suite 100 No. 12, Bannerghatta Road, Sunnyvale, CA 94085 Bangalore-560029 U.S.A Karnataka, India www.chelsio.com Tel: +1-91-80-4039-6800 Tel: 408.962.3600 Fax: 408.962.3661 Chelsio KK (Japan) SHIMA Akasaka Bldg. Minato-ku, Tokyo Japan 107-0052 Tel: 03-6234-4353 Sales For all sales inquiries please send email to [email protected] Support For all support related questions please send email to [email protected] Copyright © 2015. Chelsio Communications. All Rights Reserved. Chelsio ® is a registered trademark of Chelsio Communications. All other marks and names mentioned herein may be trademarks of their respective companies. Chelsio T5/T4 Unified Boot for Linux & Windows ii Document Revision History Version Revision Date 1.0.0 05/18/2012 1.0.1 07/30/2012 1.0.2 10/05/2012 1.0.3 16/05/2012 1.0.4 07/31/2013 1.0.5 04/29/2014 1.0.6 09/05/2014 1.0.7 09/26/2014 1.0.8 10/13/2014 1.0.9 02/24/2015 1.1.0 05/05/2015 1.1.1 07/07/2015 Chelsio T5/T4 Unified Boot for Linux & Windows iii TABLE OF CONTENTS I.
    [Show full text]
  • UEFI Firmware Overview on the HP Z210 Workstation
    UEFI Firmware Overview on the HP Z210 Workstation The HP Z210 Workstation is the first model with system firmware based on UEFI standards; it also includes HP legacy BIOS compatibility. UEFI (Unified Extensible Firmware Interface) provides a modern 64-bit interface between the operating system and system firmware, and removes several limitations present in BIOS, including disk size, option ROM size, pre-boot access to files and the network. UEFI will also enable new features over time. HP recommends Windows® 7. Overview Feature Benefits Unicode Support Allows displaying a wider range of non-Latin characters Graphics support UEFI applications have direct access to high-resolution graphics. Menus are rendered graphically using a built-in forms browser. GPT support GPT (GUID Partition Table) is a disk partitioning mechanism that allows booting UEFI operating systems from disks larger than 2.2 TB. Booting on large drives will be enabled on models on which HP makes them available. Large option UEFI option ROMs for add-in cards can be any size. BIOS options ROMs were required to fit together in a 160 KB area. ROM support Add-in cards can contain both BIOS and UEFI option ROMs. Note that a BIOS-based operating system cannot boot using a UEFI option ROM, although a UEFI-based OS can boot using a BIOS option ROM. File system support Allows pre-boot access to files on any FAT12/FAT16/FAT32 or El Torito (optical) device. EFI shell The EFI shell is a simple command-line environment that is not hampered by DOS limitations. On the HP Z210, the EFI shell is available as a web download, as part of the “HP Workstation BIOS Utilities” Softpaq.
    [Show full text]
  • Coreboot - the Free Firmware
    coreboot - the free firmware vimacs <https://vimacs.lcpu.club> Linux Club of Peking University May 19th, 2018 . vimacs (LCPU) coreboot - the free firmware May 19th, 2018 1 / 77 License This work is licensed under the Creative Commons Attribution 4.0 International License. To view a copy of this license, visit http://creativecommons.org/licenses/by/4.0/. You can find the source code of this presentation at: https://git.wehack.space/coreboot-talk/ . vimacs (LCPU) coreboot - the free firmware May 19th, 2018 2 / 77 Index 1 What is coreboot? History Why use coreboot 2 How coreboot works 3 Building and using coreboot Building Flashing 4 Utilities and Debugging 5 Join the community . vimacs (LCPU) coreboot - the free firmware May 19th, 2018 3 / 77 Index 6 Porting coreboot with autoport ASRock B75 Pro3-M Sandy/Ivy Bridge HP Elitebooks Dell Latitude E6230 7 References . vimacs (LCPU) coreboot - the free firmware May 19th, 2018 4 / 77 1 What is coreboot? History Why use coreboot 2 How coreboot works 3 Building and using coreboot Building Flashing 4 Utilities and Debugging 5 Join the community . vimacs (LCPU) coreboot - the free firmware May 19th, 2018 5 / 77 What is coreboot? coreboot is an extended firmware platform that delivers a lightning fast and secure boot experience on modern computers and embedded systems. As an Open Source project it provides auditability and maximum control over technology. The word ’coreboot’ should always be written in lowercase, even at the start of a sentence. vimacs (LCPU) coreboot - the free firmware May 19th, 2018 6 / 77 History: from LinuxBIOS to coreboot coreboot has a very long history, stretching back more than 18 years to when it was known as LinuxBIOS.
    [Show full text]
  • Embedded Graphics Drivers and Video BIOS
    Intel® Embedded Graphics Drivers and Video BIOS User’s Guide Version 4.0 June 2005 Order Number: 274041-006US ® INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION WITH INTEL PRODUCTS. NO LICENSE, EXPRESS OR IMPLIED, BY ESTOPPEL OR OTHERWISE, TO ANY INTELLECTUAL PROPERTY RIGHTS IS GRANTED BY THIS DOCUMENT. EXCEPT AS PROVIDED IN INTEL'S TERMS AND CONDITIONS OF SALE FOR SUCH PRODUCTS, INTEL ASSUMES NO LIABILITY WHATSOEVER, AND INTEL DISCLAIMS ANY EXPRESS OR IMPLIED WARRANTY, RELATING TO SALE AND/OR USE OF INTEL PRODUCTS INCLUDING LIABILITY OR WARRANTIES RELATING TO FITNESS FOR A PARTICULAR PURPOSE, MERCHANTABILITY, OR INFRINGEMENT OF ANY PATENT, COPYRIGHT OR OTHER INTELLECTUAL PROPERTY RIGHT. Intel products are not intended for use in medical, life saving, life sustaining applications. Intel may make changes to specifications and product descriptions at any time, without notice. Designers must not rely on the absence or characteristics of any features or instructions marked “reserved” or “undefined.” Intel reserves these for future definition and shall have no responsibility whatsoever for conflicts or incompatibilities arising from future changes to them. The Intel® Embedded Graphics Drivers and Video BIOS may contain design defects or errors known as errata which may cause the product to deviate from published specifications. Current characterized errata are available on request. MPEG is an international standard for video compression/decompression promoted by ISO. Implementations of MPEG CODECs, or MPEG enabled platforms may require licenses from various entities, including Intel Corporation. This User’s Guide as well as the software described in it is furnished under license and may only be used or copied in accordance with the terms of the license.
    [Show full text]
  • Acquisition and Analysis of Compromised Firmware
    View metadata, citation and similar papers at core.ac.uk brought to you by CORE provided by Elsevier - Publisher Connector Digital Investigation 12 (2015) S50eS60 Contents lists available at ScienceDirect Digital Investigation journal homepage: www.elsevier.com/locate/diin DFRWS 2015 Europe Acquisition and analysis of compromised firmware using memory forensics * Johannes Stüttgen , Stefan Vomel,€ Michael Denzel Department of Computer Science, Friedrich-Alexander University of Erlangen-Nuremberg, Martensstraße 3, 91058 Erlangen, Germany abstract Keywords: To a great degree, research in memory forensics concentrates on the acquisition and Memory forensics analysis of kernel- and user-space software from physical memory to date. With the sys- Memory acquisition tem firmware, a much more privileged software layer exists in modern computer systems Live forensics though that has recently become the target in sophisticated computer attacks more often. Firmware rootkits Compromise strategies used by high profile rootkits are almost completely invisible to Incident response standard forensic procedures and can only be detected with special soft- or hardware mechanisms. In this paper, we illustrate a variety of firmware manipulation techniques and propose methods for identifying firmware-level threats in the course of memory forensic investigations. We have implemented our insights into well-known open-source memory forensic tools and have evaluated our approach within both physical and virtual environments. © 2015 The Authors. Published by Elsevier
    [Show full text]
  • Boot Version 10.6 for NIC, Iscsi, Fcoe, and Roce Protocols User Manual
    Boot Version 10.6 for NIC, iSCSI, FCoE, and RoCE Protocols User Manual P011399-01B Rev. A Connect • Monitor • Manage 2 Copyright © 2003–2015 Emulex. All rights reserved worldwide. No part of this document may be reproduced by any means or translated to any electronic medium without the prior written consent of Emulex. Information furnished by Emulex is believed to be accurate and reliable. However, no responsibility is assumed by Emulex for its use; or for any infringements of patents or other rights of third parties which may result from its use. No license is granted by implication or otherwise under any patent, copyright or related rights of Emulex. Emulex, the Emulex logo, Emulex BladeEngine, Emulex InSpeed, Emulex LightPulse, Emulex OneCommand, Emulex OneConnect, and Emulex SLI are registered trademarks, and Emulex Advanced-8, Emulex Connect, Emulex CrossLink, Emulex Engine, Emulex Edge, Emulex ExpressLane, Emulex GreenState, Emulex OneCore, Emulex Pilot, Emulex SURF, Emulex Universal Multi-Channel, Emulex vEngine, Emulex Virtual Fabric, Emulex Virtual Network Exceleration, Emulex vPath, and Emulex vScale, are trademarks, of Emulex. All other brand or product names referenced herein are trademarks or registered trademarks of their respective companies or organizations. Emulex provides this manual "as is" without any warranty of any kind, either expressed or implied, including but not limited to the implied warranties of merchantability or fitness for a particular purpose. Emulex may make improvements and changes to the product described in this manual at any time and without any notice. Emulex assumes no responsibility for its use, nor for any infringements of patents or other rights of third parties that may result.
    [Show full text]
  • EPU-4462 4562 BIOS Reference Manual
    BIOS Reference Manual REV. October 2019 Blackbird (VL-EPU-4562) WWW.VERSALOGIC.COM 12100 SW Tualatin Road Tualatin, OR 97062-7341 (503) 747-2261 Fax (971) 224-4708 Copyright © 2018-2019 VersaLogic Corp. All rights reserved. Notice: Although every effort has been made to ensure this document is error-free, VersaLogic makes no representations or warranties with respect to this product and specifically disclaims any implied warranties of merchantability or fitness for any particular purpose. VersaLogic reserves the right to revise this product and associated documentation at any time without obligation to notify anyone of such changes. * Other names and brands may be claimed as the property of others. ii EPU-4562 BIOS Reference Manual Product Release Notes This document reflects the content of the BIOS Setup program for the EPU-4562 board. Board Revision BIOS Version Comments Rev 1.00 1.02 First release of document Updated Post watchdog default to 30 Rev 1.02 1.03 seconds Customer Support If you are unable to solve a problem after reading this manual, visiting the product support page, or searching the KnowledgeBase, contact VersaLogic Technical Support at (503) 747-2261. VersaLogic support engineers are also available via e-mail at [email protected]. Repair Service If your product requires service, you must obtain a Returned Material Authorization (RMA) number by calling 503-747-2261. Be ready to provide the following information: • Your name, the name of your company, your phone number, and e-mail address • The name of a technician or engineer that can be contacted if any questions arise • The quantity of items being returned • The model and serial number (barcode) of each item • A detailed description of the problem • Steps you have taken to resolve or recreate the problem • The return shipping address Warranty Repair All parts and labor charges are covered, including return shipping charges for UPS Ground delivery to United States addresses.
    [Show full text]
  • Maintenance and Service Guide HP Z6 G4 Workstation
    Maintenance and Service Guide HP Z6 G4 Workstation © Copyright 2017 HP Development Company, Software terms L.P. By installing, copying, downloading, or otherwise Product notice using any software product preinstalled on this computer, you agree to be bound by the terms AMD is a trademark of Advanced Micro Devices, of the HP End User License Agreement (EULA). If Inc. Bluetooth is a trademark owned by its you do not accept these license terms, your sole proprietor and used by HP Inc. under license. remedy is to return the entire unused product Intel, Core, and Celeron are trademarks of Intel (hardware and software) within 14 days for a full Corporation in the U.S. and other countries. refund subject to the refund policy of your seller. Microsoft and Windows are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries. SD Logo is a trademark of its proprietor. This guide describes features that are common to most models. Some features may not be available on your computer. Not all features are available in all editions of Windows 10. This computer may require upgraded and/or separately purchased hardware, drivers and/or software to take full advantage of Windows 10 functionality. See http://www.microsoft.com for details. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein. The information contained herein is subject to change without notice.
    [Show full text]
  • TA990FXE UEFI BIOS Manual
    TA990FXE UEFI BIOS Manual UEFI BIOS Setup...................................................................................... 1 1 Main Menu ............................................................................................. 3 2 Advanced Menu...................................................................................... 4 3 Chipset Menu ....................................................................................... 15 4 Boot Menu............................................................................................. 21 5 Security Menu ...................................................................................... 23 6 O.N.E Menu.......................................................................................... 24 7 Exit Menu ............................................................................................. 33 i TA990FXE UEFI BIOS Manual UEFI BIOS Setup Introduction The purpose of this manual is to describe the settings in the AMI UEFI BIOS Setup program on this motherboard. The Setup program allows users to modify the basic system configuration and save these settings to NVRAM. UEFI BIOS determines what a computer can do without accessing programs from a disk. This system controls most of the input and output devices such as keyboard, mouse, serial ports and disk drives. BIOS activates at the first stage of the booting process, loading and executing the operating system. Some additional features, such as virus and password protection or chipset fine-tuning options are also included
    [Show full text]
  • Computer Setup (F10) Utility Guide HP Compaq 6005 Pro Business Pcs © Copyright 2009 Hewlett-Packard Development Company, L.P
    Computer Setup (F10) Utility Guide HP Compaq 6005 Pro Business PCs © Copyright 2009 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Microsoft, Windows, and Windows Vista are either trademarks or registered trademarks of Microsoft Corporation in the United States and/or other countries. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein. This document contains proprietary information that is protected by copyright. No part of this document may be photocopied, reproduced, or translated to another language without the prior written consent of Hewlett-Packard Company. Computer Setup (F10) Utility Guide HP Compaq 6005 Pro Business PCs First Edition (September 2009) Document Part Number: 576441-001 About This Book This guide provides instructions on how to use Computer Setup. This tool is used to reconfigure and modify computer default settings when new hardware is installed and for maintenance purposes. WARNING! Text set off in this manner indicates that failure to follow directions could result in bodily harm or loss of life. CAUTION: Text set off in this manner indicates that failure to follow directions could result in damage to equipment or loss of information. NOTE: Text set off in this manner provides important supplemental information. ENWW iii iv About This Book ENWW Table of contents Computer Setup (F10) Utility Computer Setup (F10) Utilities ............................................................................................................. 1 Using Computer Setup (F10) Utilities .................................................................................
    [Show full text]
  • Troubleshooting Guide HP Business Pcs © Copyright 2009 Hewlett-Packard Development Company, L.P
    Troubleshooting Guide HP Business PCs © Copyright 2009 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Microsoft, Windows, and Windows Vista are either trademarks or registered trademarks of Microsoft Corporation in the United States and/or other countries. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein. This document contains proprietary information that is protected by copyright. No part of this document may be photocopied, reproduced, or translated to another language without the prior written consent of Hewlett-Packard Company. Troubleshooting Guide HP Business PCs First Edition (September 2009) Document Part Number: 576436-001 About This Book WARNING! Text set off in this manner indicates that failure to follow directions could result in bodily harm or loss of life. CAUTION: Text set off in this manner indicates that failure to follow directions could result in damage to equipment or loss of information. NOTE: Text set off in this manner provides important supplemental information. ENWW iii iv About This Book ENWW Table of contents 1 Computer Diagnostic Features Hewlett-Packard Vision Field Diagnostics ............................................................................................ 1 Accessing HP Vision Field
    [Show full text]