What does the titan M do that a TPM doesn’t? Not a lot of docs available
Conversation
Replying to
It provides the implementation of the StrongBox keystore (i.e. an HSM). It probably also replaces the Pixel 2 security chip which was for these applets:
* android.googlesource.com/platform/exter
* android.googlesource.com/platform/exter
3
4
Is it already implemented in Pixel 2 or it is planned to be implemented?
1
It was one of the launch features and was even used in their marketing at a high level. I mentioned it when the Pixel 2 was launched and followed up with in-depth details based on the published source code and further research / testing once I got the actual hardware.
1
A year ago, I made similar posts about the Pixel 2 when it launched and when the code was published, although I was working full-time on OS hardening on those devices. I won't be covering details on Pixel 3 security to the same extent, only mentioning a few things now and then.
I'm working on my Auditor app and attestation server on my own time without funding and some of the advances in hardware security are very relevant to those. The new security chip is something I have the option of using in the Auditor app by setting the keys as StrongBox backed.
1