TCG TPM Communication over SPDM Secure Session

This TPM Communication over SPDM Secure Session specification defines the use of the DMTF Security Protocol
and Data Model (SPDM) [1] to provide secure communication between a host and its TPM.
The goal is to establish a secure channel between a host (acting as Requester) and a TPM (acting as Responder): however, the goal is not to enable the TPM to be a full, generic SPDM Responder.
This specification defines the subset of SPDM functionalities required to establish a secure channel with a TPM.
SPDM secured messages are used to encapsulate TPM commands and responses to provide them with confidentiality and integrity protection.
Further, this specification defines the:
– SPDM payload format/ fields – used to transport SPDM messages to a TPM
– TPM’s SPDM signing key – used by a TPM for secure channel establishment
This specification defines requirements for a TPM (to enable support for an SPDM secure channel); it does not define requirements for a host.