What does the titan M do that a TPM doesn’t? Not a lot of docs available
Conversation
Replying to
It provides the implementation of the StrongBox keystore (i.e. an HSM). It probably also replaces the Pixel 2 security chip which was for these applets:
* android.googlesource.com/platform/exter
* android.googlesource.com/platform/exter
3
4
Replying to
TrustZone supports arbitrary code so it doesn't really provide anything that can't be done with TrustZone, but it does many things that aren't possible with a TPM. The reason for moving away from TrustZone is that the implementation has massive attack surface and other issues.
For StrongBox, it has to implement key import, key generation and performing operations with those keys since they don't leave the chip. It's an API used by apps for many keys.
developer.android.com/training/artic
They probably moved some verified boot and disk encryption stuff there too.
1
Pixel 2 security chip was a standard embedded Java smart card able to run applets, with signature verification / downgrade protection. It could essentially do the same things with far less attack surface than TrustZone, but a lot more than a custom implementation from Google.
1
Show replies