Developer

Resources

Mitigating risk with TCGs and privileges

Brew MP supports delegating privileges and trusted code groups. Signing certificates can be created so they are only able to sign for the privilege they require and the code groups they are intended to authorize. This constrains an attack that results from a compromised private key to only those devices that support the TCG(s) authorized by the signing certificate and limits attacker access to only those privileges granted to the signing certificate.

  • Follow