Complete Platform Attestation - Remotely Verifying the Authenticity and Integrity of Your Platform's Hardware, Firmware, and Software

Explore remote verification of platform hardware, firmware, and runtime events using open source components and industry standard protocols. Learn about client utilities for sending verifiers firmware and runtime measurements in TCG-defined Canonical Event Log format. Discover a utility for suppliers to send expected firmware and runtime golden measurements using TCG-defined signed structures as SWID Tag extensions. Gain hands-on experience with an open source verifier to confirm expected firmware boot and software execution. Understand how these components, along with TPM and Platform Certificates, integrate into a comprehensive Trusted Supply Chain solution through the HIRS project. Delve into topics such as platform boot processes, hardware verification, certificate binding and transfer, policy setting, root certificate verification, firmware validation, event logs, reference measurements, and binding specifications.

Introduction
Test Station Overview
Platform Boot Process
Hardware Verification
Platform Certificate Binding
Platform Certificate Transfer
Policy Set
Verifying Root Certificates
Firmware Validation
Event Logs
Event Log Structure
Event Log Sequence
Reference Measurements
Sweet Eggs
Base Rim
Signature
Information
Binding Specifications
Example