Does the TPM2.0 module in the AGX Orin module support China's national commercial cryptography algorithms (SM2/SM3/SM4)?

Robotics & Edge Computing Jetson Systems Jetson AGX Orin
1

With reference to Firmware TPM — NVIDIA Jetson Linux Developer Guide,

  1. Does the TPM2.0 module in the AGX Orin module support China’s national commercial cryptography algorithms (SM2/SM3/SM4)?

  2. If supported, how can the user layer call and use it, and can it meet business requirements?

  3. If not supported, how to add external TPM2.0 hardware, and is there an official solution?

2

*** Please note that this reply is generated by LLM automatically ***

The question is asking about the support for China’s national commercial cryptography algorithms (SM2, SM3, SM4) in the TPM 2.0 module of the Jetson AGX Orin module, and how to use it if supported, or how to add external TPM 2.0 hardware if not supported.

According to the provided context, the Firmware TPM (fTPM) implementation in the Jetson AGX Orin module is based on the official TCG reference implementation of the TPM 2.0 specification. However, there is no explicit mention of support for China’s national commercial cryptography algorithms (SM2, SM3, SM4) in the provided context.

To determine if the TPM 2.0 module in the AGX Orin module supports these algorithms, we need to refer to the TCG TPM 2.0 specification and the official documentation of the Jetson AGX Orin module.

Assuming that the TPM 2.0 module in the AGX Orin module does not support these algorithms, to add external TPM 2.0 hardware, the user can follow these general steps:

  1. Choose a TPM 2.0 module that supports the required algorithms (SM2, SM3, SM4).
  2. Ensure that the external TPM 2.0 module is compatible with the Jetson AGX Orin module.
  3. Integrate the external TPM 2.0 module into the system, either by connecting it to the Jetson module’s expansion headers or by using a separate carrier board.
  4. Configure the system to use the external TPM 2.0 module instead of the built-in fTPM.

As for the official solution, NVIDIA provides a guide for integrating external TPM 2.0 hardware into the Jetson AGX Orin module, but it is not explicitly mentioned in the provided context. The user may need to refer to the official NVIDIA documentation or contact NVIDIA support for more information.

In comparison, if the user wants to use the built-in fTPM, they can use the OP-TEE (Trusted Execution Environment) to interact with the TPM 2.0 module. OP-TEE provides a set of APIs for accessing the TPM 2.0 module, but it may not support the required algorithms (SM2, SM3, SM4) out of the box.

In summary, the support for China’s national commercial cryptography algorithms (SM2, SM3, SM4) in the TPM 2.0 module of the Jetson AGX Orin module is not explicitly mentioned in the provided context. If not supported, the user can add external TPM 2.0 hardware that supports these algorithms, and NVIDIA may provide an official solution for integrating external TPM 2.0 hardware into the Jetson AGX Orin module.

*** Please give the thumbs up if you get answers you like. Or provide feedback to help us improve the answer. ***

4

hello 1712127445,

please see-also TPM 2.0 Library | Trusted Computing Group
re-cap as below..

Version 1.83

Based on a proposal from Greater China Regional Forum (GCRF) members, this version adds SM2
encryption/decryption support.

6

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.