It's not just Bitlocker, all linux TPM encryption is broken too

The title is somewhat click-baity, but also true in a way, this only breaks dTPMs and the reset attack was known prior, however some people seem to have believed the misconception that encrypted parameters save such designs.

This research was done in collaboration with a good friend of mine known as birb on these parts, the full article describing this work is hosted on his blog: link

Please note that while the demo above is shown using a modular TPM card, it is entirely possible to execute the same attack on a soldered TPM too:

• on some systems it is rather trivial as the LPC bus reset does not reset the CPU so it's just a matter of grounding the reset pin on the TPM
• on other systems, grounding the reset pin on the TPM would reset the CPU, so cutting the reset trace near the TPM is necessary