Home Community User Groups Special Interest Groups Test System Security Forum Topic

Test System Security

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

TPM usage from NI Linux RT

TPM usage from NI Linux RT

‎03-02-2026 01:06 PM

Can the TPM hardware on the new NI PXIe controllers be accessed/used in the NI Linux RT environment? When I look at the purchase pages for the controllers and I select the NI Linux RT OS, the TPM option is disabled. 

If the TPM chip can be used, how? I'm looking to store some private keys for encrypted communication and I'd like to use a more straight forward solution than my current solution.

"All truths are easy to understand once they are discovered; the point is to discover them." -- Galileo Galilei

0 Kudos
Message 1 of 3
(147 Views)
Reply

Re: TPM usage from NI Linux RT

‎03-02-2026 02:02 PM

Today, TPM software tools are not part of the NI Linux distribution. This means that if you want to use some of the standard Linux tools, you need to find the Linux libraries (like Clevis for encryption, or tpm2-tools for TPM) and add them manually to your Linux build. This is a bit trickier so you'll need someone with Linux expertise. I have had some customers implement these with success.

 

We know that accessing TPMs is becoming more important - so we are working to add this to a future build of NI Linux RT. If you email me at steve.summers@emerson.com, I can share more information about the work we are doing. 

0 Kudos
Message 2 of 3
(136 Views)
Reply

Re: TPM usage from NI Linux RT

‎03-10-2026 05:02 PM

For runtime operations, the tpm2-tools is good. There are tutorials for some of the operations: https://tpm2-software.github.io/tutorials/ , although admittedly these tutorials are a bit dense. There probably is some more approachable content on YouTube or other sites.

 

A possible workflow could look like - basic configuration / setup of key stores via command line or some small program/script you create for this purpose.

Hashes / attestations could probably be retrieved from LabVIEW RT via System Executive, which might need some intermediate script (created by you) to be called.

 

For (very basic) configuration and wiping, there are options in the BIOS: NI PXIe-8880 User Manual - National Instruments

0 Kudos
Message 3 of 3
(75 Views)
Reply