POTTS: Videos

Normal Operation

First, this video shows we are unable to boot the laptop because it is configured to boot from USB only. Then two successful authentication sessions are shown. The second time we skip setting a new monce (we can do this because we have guarded the machine between both sessions; therefore we are sure that no tamper and revert attack took place at the start of the second session).

Unsealing Fails

This video shows a failing authentication session. The TPM can not unseal the user's monce because the machine is not in the expected state (i.e. it is manipulated).

Bad Monce

This video shows what could be the result of a successful tamper and revert attack. POTTS (or maybe even some other software) shows us a correct monce, it is however not the last one we have set. That can not be right.