Direct Anonymous Attestation (DAA) « Identity Mixer

Direct Anonymous Attestation (DAA) « Identity Mixer: "The solution first developed by TCG uses a trusted third party, the so-called privacy certification authority (Privacy CA), and works as follows. Each TPM generates an RSA key pair called Endorsement Key (EK). The Privacy CA is assumed to know the public parts of the Endorsement Keys of all (valid) TPMs. Now, whenever a TPM needs to authenticate itself to a verifier, it generates a second RSA key pair, called an Attestation Identity Key (AIK), sends the AIK public key to the Privacy CA, and authenticates this public key w.r.t. its EK. If the