The Trusted Platform Module (TPM) is a cryptographic component of many enterprise-class servers. TPM is an integral part of hardware-based security in these servers, providing tasks such as user authentication, remote access and data protection. System functions such as Intel® Trusted Execution Technology (Intel TXT) use TPM enhancements to help deliver system security.
TPM 2.0 is a specification defined by the Trusted Computing Group (TCG) and is the replacement for TPM 1.2. Enhancements in TPM 2.0 include server security updates such as administrator-defined opt-in/opt-out, new security key functionality and additional field upgrade algorithms. These updates increase the overall system security that can help prevent hacking and malware attacks.
If you’re thinking of or are already implementing TPM 2.0, or if you’re interested in learning more about security practices using SUSE servers, we recommend that you read “A Technical Introduction to the Use of Trusted Platform Module 2.0 with Linux.” This paper was created by one of the Linux engineering teams that the SUSE YES CERTIFICATION team works directly with at Lenovo.
SUSE Linux Enterprise Server 12 SP2 is the first enterprise Linux to integrate the toolset for TPM 2.0. The paper outlines specifically how to implement this updated functionality with SUSE Linux Enterprise Server 12 SP2. It also outlines how to configure TPM 2.0 on Lenovo System x and ThinkServer systems.
For more information about how Lenovo and SUSE are working together to make sure Lenovo hardware and SUSE operating systems are compatible, do a search for Company – “Lenovo” at YES Search.
Our goal is to help you make better decisions when purchasing new systems for your company infrastructure through our YES CERTIFICATION program and the YES bulletin. You can find more information about SUSE YES CERTIFICATION at https://www.suse.com/partners/ihv/yes/. And, you can review previous YES CERTIFICATION blogs at YES Certification blog posts.