>On the other hand, someone who can steal your laptop may be able to dump the TP... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		gruez on April 18, 2023 \| parent \| context \| favorite \| on: PSA: Upgrade your LUKS key derivation function >On the other hand, someone who can steal your laptop may be able to dump the TPM keys by simply attaching probes and turning on your machine: https://astralvx.com/stealing-the-bitlocker-key-from-a-tpm/ That only works for dTPMs. fTPMs (ie. ones built into the cpu) is safe from that attack, although they might have other weaknesses.

nh2 on April 18, 2023 [–]

It's not quite clear to me whether fTPMs really protect against hardware attacks.

According to

https://security.stackexchange.com/questions/189950/how-does...

most CPUs can be controlled via JTAG, and apparently that includes many of their deep internals.

Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact