Can you explain how attestation works? #11
Comments
|
If you wanted to make sure your phone or computer was not running anything sketchy, like malware. PCS attestation is kinda like your phone's vault that secured your softwares fingerprints if you will. Here's how it works. When your device turns on, it has a checklist it runs through. It checks to make sure all the software it is loading is legit and hasn’t been messed with. This is done using something called a TPM, which is like a super-secure vault inside your device that stores important keys. Now, the software on your device is usually signed by the manufacturer with a digital signature, kind of like a wax seal on an old letter. The device checks this seal using the keys in the TPM. If everything checks out, the device gives itself a thumbs-up and carries on as usual. If the device detects something fishy maybe the software has been altered or the signature doesn’t match it can report this back to a central server or just refuse to run certain things until the issue is fixed. So, in a nutshell, PCS attestation is a way for your device to keep itself secure by making sure only trusted software is allowed to run. It’s like having a bouncer at the door of a club, only letting in the right people and keeping out anyone who looks suspicious. |
I saw the attestation module,can you explain how the pcs attestation works?
The text was updated successfully, but these errors were encountered: