Open Platform Trust Services

Fork

• openpts
• pts-testsuite

KNOPPIX 5.1.1 for Trusted Computing Geeks v1.0.1 - Quick Setup Guide

This setup guide is intended for administrator who just setup this OS quickly.

1) Prepare New PC and Geeks CD

Geeks ISO image is available from Japanese English

Ubuntu Burning ISO How To JapaneseEnglish

2) Set Geeks on CD drive

2a) Boot the PC and enter BIOS setup menu.

Ref Access/Enter Motherboard BIOS

2b) Enable TPM

2c) Boot Order

1) CD 2) USB Memory 3) Local HDD

2d) Save and Exit

3) Boot the Geeks

Grub boot menu

4) Start Console Terminal

Click Knosole (terminal icon on menu bar)

4a) Update Iceweasel(firefox)

$ cd /cdrom/KNOPPIX/updates
$ sudo dpkg -i iceweasel_2.0.0.12-0etch1_i386.deb
<snip>

Or update to any latest version.

4b) Setup TPM (Take Ownership)

Just enter for SRK password.

$ tpm_takeownership
Enter owner password: ********
Confirm password: ********
Enter SRK password:
Confirm password:

4c) Setup Demo

I'm sorry to trouble you, but please fix some typos in the tcdemo.properties file.

$ cd /opt/OpenPlatformTrustServices/tcdemo
$ sudo vi tcdemo.properties 

service.1.url=https:/124.32.19.56/knoppix/measurement_user
#service.1.url=http:/124.32.19.56:80

$ make setup-desktop
$ sudo make start-client-admin-gcj

GUI Tool will start.

• Reference Manifest Tab
  • Click "Create/Update" button at Platform Manifest to create new manifest
  • Click "Create/Update" button at Rumtime Manifest to create new manifest

If new UUID was not appeared, The PC has some problem of TCG support.

• Identity Setup Tab
  • Click "Create Key for Quote" to create a key for remote attestation.
    • set password for user of this PC
  • Click "Setup local settings for User" to setup user's environment.

Configuration of demo was done. Close the GUI.

4d) Confirm the Operations

$ sudo make start-client-user-gcj

Click "Validate Platform and Start Service" button and wait for a while. "Website Certified by an Unknown Authority" dialog will popup, the signature of demoservice as follows, if OK, please accept.

Common Name (CN) : 124.32.19.56
Certificate Signature Value:
Size: 128 Bytes / 1024 Bits
9d 9b 31 fe 87 6b 82 c6 55 82 6a fa ed c5 79 9b 
61 cc 62 b8 80 19 cd 4f 25 7c 9e 0c 0b 5e aa 30 
67 fb 7a 2b 75 c2 a1 3a 62 f6 47 35 ea ff 41 32 
55 5d 81 25 eb 15 54 02 6e 09 bb 1e 58 40 79 cc 
b0 21 d4 41 21 67 b9 72 cf 95 56 2d 4a 1a ca 41 
f4 28 5f 36 ed 2b e8 28 a3 1a 13 9c dd 39 c7 f8 
37 bd 65 97 f4 c0 9c 57 e3 74 96 b7 59 93 a9 7d 
d2 22 d5 34 e4 3f 09 51 39 ae f8 5d 9d 98 98 c6 

"Confirm" dialog to ask log into the site with "guest" account, select OK.

Then "Platform Validation Authority - Listing package page" will open.

5) Set USB Memory

Set a USB memory. Dialog will popup. Please select "Open in New Window" (derault).

5a) Save UNIONFS image to USB Memory

Click KNOPPIX (penguin icon on menu bar)

• Configure
  • Create a persistent KNOPPIX disk image
    • “Create persistent KNOPPIX home directory” dialogue is popup.
      • Yes
      • Select USB memory device (e.g. /dev/sdb1).
      • No (an AES encryption is not chosen)
      • 100 (the image size, 100MB or more), wait a moment to complete the operation
      • O.K. (completion)

6) Reboot and Confirm the Operations (option)

Restart the PC with Geeks CD and the USB memory. Click the "TCDEMO_UserTool" icon on the desktop to start the demo GUI again.

That's it. Enjoy:-)