sigmoid.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A social space for people researching, working with, or just interested in AI!

Server stats:

605
active users

#tpm

0 posts0 participants0 posts today

Interessante Talks von den Chemnitzer Linux-Tagen @clt_news:

- "OpenSSH, das neue Zeug" von @leyrer über neue SSH features: media.ccc.de/v/clt25-331-opens #ssh

- "Festplattenverschlüsselung mit TPM 2.0" von Susanne / @b1systems über LUKS/Cryptsetup in Kombination mit einem TPM: media.ccc.de/v/clt25-114-festp #luks #tpm

- "Backups mit Restic und resticprofile" von @ascherbaum und @Kaffee_Junkie42 als super Einführung in Backups mit Restic: media.ccc.de/v/clt25-141-backu #restic #backup

Recently, I've been working on a secrets management library in Rust that uses TPM (Trusted Platform Module) 2.0 to encrypt data. It's eventually going to be exposed as a Freedesktop Secrets API provider.

I codenamed it
"Ashura" after Ado's banger Doctor-X intro song.

While building this, I realized the TSS ESAPI is powerful but seriously painful to use directly in Rust. That got me thinking: should I write a crate to wrap ESAPI in an idiomatic, ergonomic Rust interface? Something more flexible than FAPI, but far more approachable for developers. I spent hours wrestling with ESAPI just to get it to do the basics — holy crap, the learning curve is steep.

If you’re curious (or want to suffer with me), here’s the Ashura source code:

https://github.com/FyraLabs/ashura

I’m open to feedback on any level — design, code, naming, whatever, or war stories regarding working with TPMs or just HSMs in general (Hello, Apple Secure Enclave!)
#tpm #encryption #security #rust #encryptionmanagement

📌 Terminhinweis: International VDI-Conference - Automotive Data Communication 2025

🚗 Unser Automotive-Experte Christian Plappert hält auf der Konferenz einen Vortrag über "Enhancing the security of automotive applications by utilizing an invehicle TPM as central trust anchor". Im Vortrag stellt er ein #TPM-basiertes Identitäts- und Zugangsmanagement vor.

📆 1.-2. Juli 2025
📍 München
🕑 Der Vortrag ist am 2. Konferenztag um 9:30 Uhr

Mehr Infos und Anmeldung: vdiconference.com/automotive-t

VDI WissensforumInternational VDI-Conference - Automotive Data Communication 2025The international VDI conference "Automotive Data Communication" deals with the current status and future developments of on-board data network architectures in vehicles

I have a question for people who use #systemd cryptenroll with #TPM on headless machines with unattended updates:
How do you handle re-enrollment in case the #UKI changes? Are there any practical strategies ?