TPMs have some value if you have a need to say authenticate your device to some remote server/cloud.I assume there is something that I am missing, otherwise hardware like "Lets trust TPM" would be pointless.
They can keep a private key safe, and sign your communication for you.
Not useful for the boot part.
Pi can secure that by itself, if you set the right configuration in one time programmable memory.
Do keep in mind that the Pi itself is not a secure device though, and someone that knows what they are doing may still compromise your system in other ways.
*mumbles something about the PCIe bus by design allowing PCIe cards to read host memory*
Statistics: Posted by incognitum — Tue Jul 23, 2024 8:13 pm