10-14-2017 09:26 PM - last edited on 03-05-2024 06:22 PM by ROGBot
11-08-2017 07:01 PM
11-20-2017 01:01 PM
11-21-2017 02:24 AM
Joe456 wrote:
Hi,
I have an ASUS TPM Module (https://www.amazon.co.uk/FW3-19-Trusted-Platform-Hardware-Security/dp/B007V9RQLY) which reports itself as v3.19:
PS C:\WINDOWS\system32> get-tpm
TpmPresent : True
TpmReady : True
ManufacturerId : 1229346816
ManufacturerVersion : 3.19
ManagedAuthLevel : Delegated
OwnerAuth :
OwnerClearDisabled : True
AutoProvisioning : Enabled
LockedOut : False
LockoutCount : Not Supported for TPM 1.2
LockoutMax : Not Supported for TPM 1.2
SelfTest : {191, 191, 245, 191...}
I went through the checks issued by Microsoft here: https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV170012
* I do not have any entries in my system log
* tpm.msc does not report the tpm as vunerable
* I ran the powershell script provided by Microsoft and got the following reponse:
PS C:\users\joe\Desktop> ./check
This Infineon firmware version 3.19 TPM is safe.
I also ran this script here: https://github.com/iadgov/Detect-CVE-2017-15361-TPM/blob/master/windows/Detect-CVE-2017-15361-TPM.ps...
PS C:\users\joe\Downloads> .\Detect-CVE-2017-15361-TPM.ps1
False
Am I just lucky that I've got any ancient version that is not vulnerable? The only way to truly test is to generate some key pairs with the tpm and run them through the tester online but I haven't figured out how to do this yet.
11-20-2017 04:54 PM
11-22-2017 11:26 AM
12-07-2017 05:57 AM
12-07-2017 08:07 AM
goran69 wrote:
I have also bought an TPM-M 2.0 module from Asus.
Windows 10 event viewer (system logs) and tpm.msc is telling me that this module has a security issue in the firmware. Windows tells me to contact the manufacturer for updated firmware. Is Asus working on this or not?
12-07-2017 10:09 PM
Theliel wrote:
In theory, yes, ASUS send me a mail with some info, but without any estimated timeline
12-22-2017 08:46 PM
12-28-2017 11:26 PM