cancel
Showing results for 
Search instead for 
Did you mean: 

Are the XT kits compiled with Secure Anchoring and Binding

Are the XT kits compiled with Secure Anchoring and Binding

Summary

Are the XT kits compiled with Secure Anchoring and Binding

Question

Do you need to do the steps for Secure Anchoring to get the FLCERR_TS_BINDING_BREAK error as a return value? Or is there already some default hardware data stored that will trigger this if the Trusted Local Storage (TLS) files are copied from one device to another?

Answer

All the XT kits are compiled with Secure Anchoring, but Binding is not present (as the host-id node locks). However, at some point in the future it almost inevitably will. Either model of anchoring can cause anchoring to break, but from our perspective, Trusted Storage is a conceptual mechanism for securely storing data which cannot be easily:
? Tampered with or modified (Encryption is used to prevent this, amongst other things to make reverse engineering challenging).
? Backed up/restored (Anchoring is used to prevent this).
? Copied to another machine (Binding is used to prevent this).
So anchoring will break if TS is backed up, updated and then restored. Binding, if it existed in the XT kits, would fail if copied to a different enough machine ? but since we don?t have it, host-id would stop the copy from TS to another machine from succeeding.
Was this article helpful? Yes No
No ratings