TransWikia.com

Device authentication, common method

Information Security Asked on November 28, 2021

What are some standard device authentication methods, in a scenario when:

  • The desktop computer is being authenticated on web service
  • I provide the .exe on the desktop
  • I control the web service
  • The desktop has a TPM chip installed

Should I get the device ID from the desktop, then somehow sign it with TPM and send it to web service? What is the standard method?

authenticationcryptographytpmweb service

One Answer

Trying to answer my question, reviews are welcome.

On https connection :

  • Alice requests random number from Bob in publicly accessible web service

  • Alice signs random number with her private key within TPM 2.0

  • Alice sends signed random number to Bob

  • Bob verifies that Alice signed random number

Answered by guest on November 28, 2021

Add your own answers!

Ask a Question

Get help from others!

Recent Answers

Recent Questions

© 2024 TransWikia.com. All rights reserved. Sites we Love: PCI Database, UKBizDB, Menu Kuliner, Sharing RPP