Introduction to TPM

（Trusted Platform Module ）

 1 Basic concepts

contents 2 Basic principles

3 TPM on BIOS

2
Trusted computing
Trusted
➢ Trusted means “an entity whose behavior is always as expected when it achieves a given goal”;
➢ Emphasis on the predictable and controllable outcome of behavior .

Trusted computing
➢ Take measures from the chip, hardware structure, BIOS and operating system;
➢ First, establish a root of trust in the computer system, trust root reliability is ensured by security
measures ;
➢ Then, A chain of trust is established by validating each component from the root of trust to the
hardware platform, OS, and then to the applications.

TCG（ Trusted Computing Group ）

➢ Former name TPCA（ Trusted Computing Platform Alliance ）；
➢ Founded in 1999 by Compaq, HP, IBM, Intel and Microsoft, now has more than 200 members；
➢ Defined TPM (Trusted Platform Module) .

3
What is TPM？
TPM：Trusted Platform Module
TPM is a microcontroller that can store keys, passwords and digital
certificates.
TPM is typically embedded on a PC motherboard and can be used on
any computing device that requires TPM functionality.
TPM chip protects against external software attacks and physical theft,
ensuring the security of information storage.

Functions of TPM
➢ Trust for Measurement
➢ Trust for Reporting
➢ Trust for Storage

4
 TPM Chip Application Scenario

◼ Mobile phones, personal computers, servers, all installed TPM chips.

Laptop PC Mobile Phone 服务器

Server

5
 TPM Hardware Structure

1、The TPM security chip is both a key generator and a key management device, and provides
a unified programming interface. The key is the only key to opening an encrypted file.
2、An important role of the TPM security chip is to strengthen the management of the key,
the chip to generate, store and manage the key in hardware.
3、The TPM security chip can store the key in a non-volatile memory protected by the TPM
controller.
6
 Trusted Computing Concept
⚫ According to the definition made by the Trusted Computing Group (TCG), trusted computing
enables hardware and software to operate in designed behaviors. The behaviors are trusted
behaviors, which are based on trusted measurement, reporting, and management over a unified
platform.

• Chain of trust：A chain of trust is established by

validating each component from the root of trust
to the hardware platform, OS, and then to the
applications ….
• Platform identification：The module has a built-
in endorsement key (EK), which is a set of
certificates and cryptographic keys. Digital
certificates are issued by the certification
authority (CA) platform to verify the chip and
system identify.
• Key protection：Each module has a built-in
storage root key (SRK), which cannot be accessed
by external devices. In this way, a key protection
tree
7 is created to protect system keys.
 1 Basic concepts

contents 2 Basic principles

3 TPM on BIOS

8
 Basic Principles of Trusted Boot

• The Trusted Building Block (TBB) has a Core Root of Trust for Measurement (CRTM), which is a
segment of startup code that has been verified and cannot be tampered with.
• Starting from the TBB, the running code of the next component is measured, and the hash result
calculated is stored in the program control register (PCR) in the TPM chip for subsequent audit
verification of remote attestation. Then, the measured code is executed to verify the start of the
next component. In this way, the trust chain is extended from CRTM to the entire system. After the
system starts, the system trust status can be verified through remote attestation by a third-party.
9
 Trusted Boot—Remote Attestation

• To implement remote attestation, the remote attestation (RA) server needs to be

deployed, and the RA client needs to be deployed on the local system to be verified.
The RA server stores the initial metrics that must not be changed. Challenge messages
are exchanged between the RA server and client to complete the verification.
• The RA server sends a challenge request to the RA client.
• The RA client searches for the PCR values based on the challenge request and then
10
sends the signature to the RA server.
 Trusted Boot—Local Attestation
• Sealing confidential information:
When the device is in the trusted state,
the administrator uses the seal
mechanism to seal one or more PCRs
and confidential information to save
the trusted status of the device.
• Verifying trusted status:
The administrator can use the unseal
mechanism to determine the current
trusted status of the device. If the
Unseal operation is successful and the
confidential information is the same as
the information before the sealing, the
• The seal/unseal mechanism provided by the device is in the trusted state.
TPM chip implements local attestation. Local Otherwise, the PCR or file name is
attestation checks the integrity of system provided.
boot components and integrity of files on
hard disks.
11
TPM1.2/2.0 Function

12
 1 Basic concepts

contents 2 Basic principles

3 TPM on BIOS

13
 TPM on BIOS Parameter Description
Type of the TPM device.
Not Detected indicates that the server has no TPM devices.
⚫ If it is "TPM x.x", the TPM, TPM Active PCR Hash Algorithm,
TPM Device TPM Hardware Supported Hash, TPM Availability, and TPM
Operation Clear TPMS parameters are available.
⚫ If it is TCM, the Trusted Platform Support parameter is
available.

TPM status. The TPM effectively prevents unauthorized access to

TPM
the server.
TPM Active PCR Hash Platform Configuration Register (PCR) hash algorithms enabled
Algorithm for the TPM.
TPM Hardware
Supported Hash Hash algorithms supported by the TPM hardware.
Algorithm
Clear TPMhus Function of clearing the TPM private key.

TPM Operation TPM operation menu.

➢ V2/V3/V5 series server supports the TPM module, and the TPM module belongs to the optional module.
➢ The latest BIOS version supports both TPM 1.2 and TPM 2.0
➢ BIOS Security interface can view the in-position and enable status of the TPM module. At the same time,
you can confirm whether the TPM module is normal.
➢ The sales caliper is subject to the configurator.
14
Part 8

Introduction to Optical Module

Preface
Optical
Interface Type Transmission Media
Module

Optical Module Connector

+ Fiber

Optical Optical Cable Optical

Port （AOC） Fiber

Electrical Cable
（DAC）
NIC

Electrical
Port
AOC：Active optical cable
DAC：Direct attach cable

16
What is Optical Module
An optical module works at the physical layer of the OSI model and is one of the core components
in the fiber communication system. It mainly consists of optoelectronic devices (optical transmitter
and optical receiver), functional circuits, and optical bores. Its main function is to convert between
electrical and optical signals during optical signal transmission.

Transmitter

Receiver Optical Optical Electrical

Optical Signals Module Signals
Module
Transceiver

Transponder

17
 1 What is Optical Module

2 What is Connector
contents 3 What is Optical Fiber

4 Common Optical Module Technology

5 Mix & Match

18
Optical Module Working Principle
The transmit optical bore inputs electrical signals at a certain bit rate, which are then processed by
the internal driver chip. After the processing, the drive's semiconductor laser diode (LD) or light
emitting diode (LED) emits modulated optical signals at the corresponding rate. When the optical
signals reach the receive optical bore through an optical fiber, they are converted back into electrical
signals by the photodetector diode. The electrical signals are then output at the corresponding bit
rate after passing the preamplifier.

19
 Parameters of Optical Modules
1. Output power
Output power refers to the light intensity of the transmitting end, unit is dBm, is the important
parameter that affects the transmission distance.

2. Receiving sensitivity
Receiving sensitivity refers to the light intensity that can be detected, unit is dBm. Generally, the higher
rate, the worse receiving sensitivity. That is, the larger the minimum receiving optical power, the higher
the requirement of the optical module receiving terminal device.

3. Extinction ratio
The size ratio of optical power when signal logic is 1 and 0, unit is dB. Extinction ratio is inversely
proportional to optical power, the extinction ratio will be small when the optical power is large.

4. Saturated optical power

At a certain transmission rate, the maximum input optical power when maintain a certain bit error rate.
It will lead to error generation when the received optical power is greater than the saturated optical
power. So error phenomenon will appear if the large output power module without attenuation
loopback test.

20
 Optical Module by Form Factor

Form Factor Description Common Rates Appearance

An SFP optical module supports LC fiber connectors.
SFP/eSFP An eSFP optical module is an enhanced SFP optical module that supports
（ Small Form factor Pluggable/Enhanced monitoring of voltage, temperature, bias current, transmit power, and GE
Small Form factor Pluggable ） receive power. Currently, eSFP and SFP optical modules are both called
SFP optical modules.

An SFP+ optical module is an SFP optical module with a higher rate. It is

SFP+ more sensitive to electromagnetic interference (EMI) because of a higher
10GE/8G FC/16G FC
（ Small Form factor Pluggable Plus） rate. To reduce EMI, SFP+ optical modules have more springs than SFP
optical modules and the cages for SFP+ modules on a card are tighter.。

Its form factor size is the same as that of an SFP+ optical module. An
SFP28
SFP28 port can use a 25GE SFP28 optical module or 10GE SFP+ optical 25GE
（ Small Form factor Pluggable 28）
module.

QSFP+ A QSFP+ optical module supports MPO fiber connectors and is larger 40GE
（ Quad Small Form factor Pluggable） than an SFP+ optical module. 56G IB

100GE
QSFP28 Its form factor size is the same as that of QSFP+. Currently, 100GE
100G IB
（ Quad Small Form factor Pluggable 28） QSFP28 optical modules and 40GE QSFP28 optical modules are available.
56G/100G OPA

21
 1 What is Optical Module

2 What is Connector
contents 3 What is Optical Fiber

4 Common Optical Module Technology

5 Mix & Match

22
 Different Types of Fiber Optic Connectors
LC Fiber Optic Connector
LC refers to Lucent Connector. It is a push-pull, small form factor
connector that uses a 1.25mm ferrule, half the size of the SC. LC, due
to the combination of small size and latch feature, is ideal for high-
density connections, SFP and SFP+ transceivers and XFP transceivers.

SC Fiber Optic Connector

SC refers to subscriber connector. The joint is a snap-on standard
square joint and is fastened by a plug-and-pull pin latch type
without rotation. This kind of connector is made of engineering
plastics, low price and easy to plug and remove.
Lucent Connector
Straight Tip
FC Fiber Optic Connector
FC refers to Ferrule Connector. The FC is a screw type connector with
a 2.5mm ferrule, which was the first fiber optic connector to use a
ceramic ferrule. Simple structure, convenient operation, easy
manufacture, and can be used in high vibration environment.
Subscriber Connector
ST Fiber Optic Connector
ST refers to Straight Tip. SC is mainly used in multimode fiber optic
Ferrule Connector MPO cable, campuses and buildings.

MPO/MTP
MPO/MTP are used for a special type of multi-fiber connector.
Larger in size than more commonplace connectors, MPO/MTP is
capable of supporting up to 24 strand fiber. This makes standard
MPO/MTP cables ideal in environments where many connections
are needed, such as data centers.

23
Common Types of Connectors

12 fiber MPO connector

LC MPO
Lucent Connector Multi-fiber Push On
16 fiber MPO connector

GE/10GE/FC/40GE 40GE/100GE

DLC = Double LC
Two LCs are fixed together.
No difference in function from 2 LCs
24 fiber MPO connector

24
 1 What is Optical Module

2 What is Connector
contents 3 What is Optical Fiber

4 Common Optical Module Technology

5 Mix & Match

25
Optical Fiber Structure

Core Cladding Coating

Fiber Core
Located in the center of the fiber, the composition is high-purity silica with a very small amount of dopant. The refractive index
of the core is slightly higher than that of the cladding, and the loss is lower than that of the cladding. The optical energy is
mainly transmitted in the core.
Cladding
Located around the core, the composition is also high-purity silica containing very little dopant. The cladding provides a
reflective surface and optical isolation for the transmission of light, and plays a role in mechanical protection.
Coating
The outermost layer of the optical fiber is composed of acrylate, silicone rubber and nylon. The coating protects the optical fiber
from moisture and mechanical scratches.

Attenuation is the loss of optical signal due to absorption, scattering, bending, and other parameters of optical fiber over a
long distance. when light is transmitted through OFC, light intensity through the fiber optic decreases between transmitter and
receiver.
Dispersion refers to the broadening or spreading of transmitted light pulses as they travel along the fiber. As each light pulse
broadens and overlap with neighboring pulse, Inter-symbol Interference (ISI) occurs which makes the pulses indistinguishable
at26the receiver.
Optical Fiber Classification
Quartz fiber

Materials used Fluorine-containing

Plastic

Step Index Fibers

Refractive index
Graded Index Fibers
Classification
Single-Mode
Mode of
propagation Multimode

Short wavelength
Wavelengths
Long wavelength
27
Step Index & Graded Index Fiber

Along the fiber cladding coating Step-Index Multimode Fiber

core

Along the fiber Graded -Index Multimode Fiber

cladding coating

core

28
Single-Mode & Multimode Fiber
Multimode fiber（MMF) allows multiple light modes to transmit and pass through. That makes manufacturing easier
and offers a lower cost ratio on the same length. However, due to modal dispersion, this limits the greatest length of
transmission connections. So these fibers are mainly for the short-distance transmission of signals.
Single mode fiber（SMF) is the fiber cable that only allows one mode of light to transmit. These feature a small modal
dispersion for vast-distance signal transmission. In contrast with multimode fiber, single mode enables the concentration
of light for quicker and farther going. That is crucial for high-speed networks over a long distance.

MMF SMF

Fiber cabling cost High Relative low

Expensive（high-power laser
Transceiver cost Relative low（LED）
diode (LD)）

Attenuation High Low

Wavelengths 850nm 1310nm、1550nm Multimode Single-mode

Distance Short links<2km long-reach transmission>200KM

29
Single-Mode & Multimode Fiber Types

Single-Mode Fibers: G652, G655, G657

Multimode Fibers:

MMF Cable Type Diameter Jacket Color Optical Source Bandwidth

OM1 62.5/125µm Orange LED 200MHz*km
OM2 50/125µm Orange LED 500MHz*km
OM3 50/125µm Aqua VSCEL 2000MHz*km
OM4 50/125µm Aqua VSCEL 4700MHz*km
OM5 50/125µm Lime Green VSCEL 28000MHz*km

30
 1 What is Optical Module

2 What is Connector
contents 3 What is Optical Fiber

4 Common Optical Module Technology

5 Mix & Match

31
Wavelength-Division Multiplexing
Wavelength Division Multiplexing (WDM) is a multiplexing and multiple-access technology, used
in fiber-optic transmission in order to maximize transmitted bit rates.

Coarse Wavelength Division Multiplexing (CWDM) and Dense Wavelength Division Multiplexing
(DWDM) are the two primary technologies developed based on Wavelength Division Multiplexing
(WDM), but with different wavelength patterns and applications.

CWDM DWDM
• CWDM systems typically transport 8 • DWDM systems can carry 40, 80, 96, or up
wavelengths with a channel spacing of to 160 wavelengths by utilizing a much
20nm in the spectrum grid from 1470nm to narrower spacing 0.8/0.4nm (100 GHz/50
1610nm – on a single fiber GHz grid) – on a single fiber
• Lower total cost • Typically support 96 channels spaced at
• Lower complexity 0.8nm apart within the 1550 nm C-Band
• Lower power consumption spectrum (see graphic below).
• Less complicated and lower cost lasers • Longer reach – up to 120 km (~75 miles)
• Can not be amplified • Higher density and bandwidth
• More accurate temperature-controlled
lasers
• Dense spacing allows for amplification

32
 Bi-Directional Optical Transceiver Technology
Commonly, optical networks rely on Transceivers that utilize one optical fiber to transmit data and
another optical fiber to receive data to and from the networking devices. Generally, this kind of
data transmission raises the costs of the network deployment, however with use of the
bidirectional optical WDM BIDI Transceiver, and its capability to send and receive data over one
optical fiber, we can create a much more cost-effective optical networks.
The Bidirectional Optical Transceiver or BIDI, is a type of an optical Transceiver which uses the
Wavelength Division Multiplexing technology or widely known as WDM technology. The BIDI
Transceiver manages to do this with the help of the integral bidirectional coupler which transmits
and receives signals.

* Not all BiDi optical modules have only one optical interface, and some optical modules support two-fiber bidirectional.

33
 1 What is Optical Module

2 What is Connector
contents 3 What is Optical Fiber

4 Common Optical Module Technology

5 Mix & Match

34
 Mix & Match
Fiber Jumper
Interconnecting with optical
Optical Modules and Cable Types Interface Type Fiber Type
modules
DLC Single-mode/multimode
SFP + Optical Module
SFP+ 2*LC Single-mode/multimode SFP+ Optical Module（LC
（10GE/8G FC/16G FC） SFP + Power Cable DAC interface）
SFP+ Optical cable AOC
DLC Single-mode/multimode LC Single-mode
SFP28 Optical
Module 2*LC Single-mode/multimode
SFP28 SFP28 Optical Module（LC
（25GE/32G FC） SFP28 Power Cable DAC interface）
SFP28 Optical cable AOC
Single-mode/multimode
QSFP+ Optical Module（MPO） LC Multimode
MPO
MPO
QSFP+ Optical MPO 4*LC Single-
SFP+ Optical Module（LC）
Module mode/multimode
QSFP+ DLC Single-mode/multimode QSFP+ Optical Module（LC）
（40GE）
2*LC Single-mode/multimode QSFP + Optical Module（LC）
QSFP+ Power Cable DAC QSFP + Optical Module（LC）
QSFP+ Optical cable AOC QSFP + Optical Module（LC） MPO Multimode
Single-mode/multimode
QSFP28 Optical Module （MPO）
QSFP28 Optical MPO
MPO
Module MPO 4*LC Single-
QSFP28 SFP28 Optical Module（LC）
（100GE） mode/multimode
QSFP28 Power Cable DAC QSFP28 Optical Module （LC）
QSFP28 Optical cable AOC QSFP28 Optical Module （LC） MPO 4*LC
35
Note：Single-mode MPO is not used for server Note：Check compatibility for network card and optical module
Optical Module Naming Rule

IEEE802.3 Naming Rule

Meaning
Fiber
Rate Distance Pairs
wavelengths Form factor type
•CFP
•SFP/eSFP
•SFP+ •CXP
A
•SFP28 •QSFP28
•QSFP+ •QSFP-DD

Rate
•FE •40GE
B •GE •100GE
•10GE •400GE
•25GE
Fibers
Fibers Transmission distance type
•SX: short distance
Fibers C
•LX: medium distance
•LH: long distance
D Transmission distance, in km
Module type
E •SM: single-mode
•MM: multimode
F Center wavelength, in nm

36
 让数字世界无限可能
Thank you. Fusion X, Digital Infinity

Copyright©2022 xFusion Digital Technologies Co., Ltd.

All Rights Reserved.

The information in this document may contain predictive

statements including, without limitation, statements regarding
the future financial and operating results, future product
portfolio, new technology, etc. There are a number of factors that
could cause actual results and developments to differ materially
from those expressed or implied in the predictive statements.
Therefore, such information is provided for reference purpose
only and constitutes neither an offer nor an acceptance. xFusion
may change the information at any time without notice.