TPM
Easy encrypt/decrypt data with TPM
Install / Use
/learn @rbmm/TPMREADME
TPM
Easy encrypt/decrypt data with TPM
with TPM exist special, well known Key for sealing, TPM_RSA_SRK_SEAL_KEY or L"MICROSOFT_PCP_KSP_RSA_SEAL_KEY_3BD1C4BF-004E-4E2F-8A4D-0BF633DCB074"
we can open this key via NCryptOpenKey and than use it in calls NCryptEncrypt and NCryptDecrypt with NCRYPT_SEALING_FLAG
if NCryptOpenStorageProvider for MS_PLATFORM_KEY_STORAGE_PROVIDER return NTE_DEVICE_NOT_READY this probably mean that TPM not supported on machine
we also can use optional password for protect data, with NCRYPTBUFFER_TPM_SEAL_PASSWORD BCryptBuffer type
of course only relative small data size can be encrypted/decrypted this way (up to 0x400 bytes). but we cangenerate random 32 bytes for example and encrypt/decrypt it and than create from it AES256 key and use it for actual data encrypt/decrypt
Related Skills
node-connect
348.0kDiagnose OpenClaw node connection and pairing failures for Android, iOS, and macOS companion apps
frontend-design
108.8kCreate distinctive, production-grade frontend interfaces with high design quality. Use this skill when the user asks to build web components, pages, or applications. Generates creative, polished code that avoids generic AI aesthetics.
openai-whisper-api
348.0kTranscribe audio via OpenAI Audio Transcriptions API (Whisper).
qqbot-media
348.0kQQBot 富媒体收发能力。使用 <qqmedia> 标签,系统根据文件扩展名自动识别类型(图片/语音/视频/文件)。
