Hello,
Any plans to support desktops with TPM 2.0 for full time Windows Hello?
Unlocking after initial master password works fine, but I thought with TPM I would get full time support. Thanks for your help!
-Benitocereno
Hi @Airstar,
Yes, you're right that TPM 2.0 is required for new hardware but api support for TPM 1.2 has its own limitations, and the one which is restricting the Full time Hello support on Enpass is lack of TPM key attestation info when asked for using the Microsoft provided APIs.
TPM key attestation is a protocol that cryptographically proves that a key is TPM-bound. This type of attestation can be used to guarantee that a certain cryptographic operation occurred in the TPM of a part