Call us today on: +44 (0)203 88 020 88
SecureTeamSecureTeamSecureTeamSecureTeam
  • Home
  • Our Services
    • Infrastructure Testing
      • Internal Network Penetration Test
      • External Network Penetration Test
      • Vulnerability Assessment
    • Web Application Penetration Test
    • Configuration Review
      • Windows Build Review
    • Information Assurance
      • ISO 27001 Gap Analysis
    • Cyber Essentials Certification
  • News
  • Articles
  • About
    • About SecureTeam
    • Cookie Policy
    • Privacy Notice
    • Website Terms & Conditions
    • White-Label Consultancy
    • Jobs
  • Contact Us

News

Home  >  News  >  Vulnerabilities  >  What is tpm.fail?
NextPrevious

What is tpm.fail?

News, Vulnerabilities | 25 November, 2019 | 0

Researchers demonstrate how to extract secure keys from an Intel Trusted Platform Module in 4 minutes

The Trusted Platform Module (or TPM) is a secure enclave within a computer that acts as a root of trust for the operating system and secure storage area for security keys. The TPM can be implemented either as a dedicated chip on the motherboard or run in firmware within a separate microprocessor within the Intel CPU.  Access to the TPM contents means an attacker could forge a digital signature or obtain the keys being used to encrypt the contents of a VPN.

Researchers have published a paper, naming the vulnerability TPM.Fail (http://tpm.fail ) which explains how the exploit works.  The flaw is in the implementation of ecliptic curve signature generation which allows information about the key to leak by minute variations in the calculation time.  If you give the TPM enough calculations, you can deduce the key by analysing the timing variations.

Intel have published a fix for their firmware based TPM CVE-2019-11090.  The vulnerable hardware TPM named in the paper from STMicroelectronics has its firmware patched via updates from the laptop manufacturers, details on their website.

Microsoft have confirmed that the vulnerable algorithm (ECDSA) is not used by Windows, but third party software you have installed may make use of it.

 

 

Subscribe to our monthly cybersecurity newsletter
Stay up-to-date with the very latest cybersecurity news & technical articles delivered straight to your inbox
We hate spam as much as you do. We will never give your email address out to any third-party.
cyber security news, Intel, TPM

Related Post

  • Ransomware trends 2020

    By Mark Faithfull

    After analysing dozens of ransomware incidents over the last 4 years, researchers have identified their defining common characteristics – which can help security managers design targeted defences.   Mandiant Intelligence have published a report thatRead more

  • Microsoft patches critical SMB flaw

    By Mark Faithfull

    Microsoft has released a patch to fix a remote code execution flaw in the SMB protocol affecting Windows 10 PC and their servers.  SMB is used by Active Directory, for network file sharing and someRead more

  • Android security updates risk for a billion devices

    By Mark Faithfull

    Most Android devices receive security updates for only 2 years from release – yet can remain on sale for much longer than that.  Which means it is possible to by a brand new Android phoneRead more

  • Kr00k Wi-Fi vulnerability affects a billion devices

    By Mark Faithfull

    Kr00k is a serious Wi-Fi vulnerability which can trick a device to retransmit the last 32k of encrypted traffic with an encryption key of all zeros. The flaw affects devices using Wi-Fi chips from BroadcomRead more

  • Maximum TLS Cert validity reducing to 13 months

    By Mark Faithfull

    From September 2020 the security certificates used to enable HTTPS communications can only be valid for a maximum of 13 months, says Apple. Since the Apple Safari browser enjoys a 17% market share, this restrictionRead more

NextPrevious

Recent Posts

  • Microsoft extends support for older software
  • Microsoft patches zero-day flaws
  • What is server hardening ?
  • SecureTeam achieve ISO 9001 & 27001 accreditation
  • Ransomware trends 2020

Tags

Android blockchain Bluetooth Chrome Cisco credential stuffing cyber crime cyber essentials cyber security cyber security news Data Protection DNS Ethereum Exchange Server exim fileless formjacking GDPR Intel IoT Linux MacOS Meltdown microsoft patching penetration testing phishing ransomware RDP Row Hammer security breach Security operations security testing SIEM Spectre supply chain attacks Sysinternals Tomcat TPM UK Law VNC vulnerability management web applications web browsers wireless

Archives

  • April 2020
  • March 2020
  • February 2020
  • January 2020
  • December 2019
  • November 2019
  • October 2019
  • September 2019
  • August 2019
  • July 2019
  • June 2019
  • May 2019
  • April 2019
  • March 2019
  • February 2019
  • January 2019
  • December 2018
  • November 2018
  • July 2018
  • June 2018
  • April 2018
  • January 2018
  • October 2017
BCS Cyber Essentials Cyber Essentials Cyber Essentials PLUS ISO 9001 ISO 27001
information. secured.
  • Home
  • Our Services
    • Infrastructure Testing
      • Internal Network Penetration Test
      • External Network Penetration Test
      • Vulnerability Assessment
    • Web Application Penetration Test
    • Configuration Review
      • Windows Build Review
    • Information Assurance
      • ISO 27001 Gap Analysis
    • Cyber Essentials Certification
  • News
  • Articles
  • About
    • About SecureTeam
    • Cookie Policy
    • Privacy Notice
    • Website Terms & Conditions
    • White-Label Consultancy
    • Jobs
  • Contact Us
SecureTeam
SecureTeam use cookies on this website to ensure that we give you the best experience possible. If you continue to use our site we will assume that you are happy with cookies being used.OkRead more