Ramsey....EK loading?
What about Infineon?& who is the TTP here?
Hope it's Wave.....:)
19. Are the unique keys in a TPM generated, and the public keys recorded by a Trusted Third Party (TPP), at the time of manufacture? If not, could a piece of software generate a key pair, pretend to be a TPM and have the public key certified?
The unique key in the TPM, known as the endorsement key (EK), is generated during manufacturing. To validate that the EK comes from a valid TPM the manufacturer creates an endorsement credential that states that the EK in question comes from a valid TPM. So while nyone could create a SW EK and claim it comes from a valid TPM they would not have a valid endorsement credential to accompany that claim. This implies that those who rely on an EK will validate that it comes from a valid TPM.