- cross-posted to:
- [email protected]
- cross-posted to:
- [email protected]
I wrote a dead simple file canary tool that will install an eBPF program that drops all outgoing packets if a canary is touched. I wrote this in response to the current trend of supply chain attacks that try to harvest credentials
Yes using TPM protected TSS2 keys would tie them to your actual machine since only that TPM can internally decrypt them and use them without then being accessible outside. The TPM could be a discrete chip or a software/virtual one.
For instance OpenSSL has an engine/provider for tpm2-tss however I think the software using the keys needs to be engine-aware.