本文对应《A Practical Guide to TPM 2.0 — Using the Trusted Platform Module in the New Age of Security》的第8章概述。
CHAPTER 8 TPM Entities —— 第8章 TPM实体
A TPM 2.0 entity is an item in the TPM that can be directly referenced with a handle.
The term encompasses more than objects because the specification uses the word object
to identify a very specific subset of entities. This can be confusing, so this chapter briefly
describes all of the entity types: permanent entities (hierarchies, the dictionary attack
lockout mechanism, and PCRs); nonvolatile entities (NVRAM indexes), which are similar to
permanent entities; objects (keys and data); and volatile entities (sessions of various types).
一个TPM 2.0实体是TPM中的一个项目,其能够通过一个句柄直接引用。此术语(实体)比对象包含更多内容,因为规范中使用对象这个词标识一个具体的实体子集。这可能使人感到困惑,因此本章简要描述了所有的实体类型:永久性实体(层级、字典攻击锁定机制和平台控制寄存器);非易失性实体(NVRAM索引),类似于永久性实体;对象(密钥和数据);和易失性实体(各种类型会话)。
After this introduction, the following chapters discuss each entity and its uses in
more detail. In particular, the next chapter delves into hierarchies, a collection of entities
that are related and managed as a group.
在介绍之后,接下来的章节更详细讨论每一种实体和其使用方法。特别地,下一章(CHAPTER 9 HIERARCHIES)将深入研究层级,一个实体的集合,其作为一个组进行关联和管理。
知识点提炼
- TPM 2.0实体能够被句柄直接引用
- 实体比对象的概念更大,实体包含对象
- 所有实体类型
- 永久实体(层级、字典攻击锁定机制和平台控制寄存器)
- 非易失性实体(NVRAM索引)
- 对象(密钥和数据)
- 易失性实体(各种类型会话)
