TPM policy authorization (policy_authorize) can be optimized by caching the VerifiedTicket (so it does not need to be reverified). I am imagining a solution similar to SavedTpmContext with marshall/unmarshall or serde. If somebody can suggest how it should be organized in the file structure, I would be happy to implement it myself and make a PR.
I think I have a pretty simple implementation that converts the tag and hierarchy to integers, and to deserialize takes the SavedVerifiedTicket to a TPMT_TK_VERIFIED. I'm not sure this is the cleanest implementation.
TPM policy authorization (
policy_authorize) can be optimized by caching theVerifiedTicket(so it does not need to be reverified). I am imagining a solution similar toSavedTpmContextwith marshall/unmarshall orserde. If somebody can suggest how it should be organized in the file structure, I would be happy to implement it myself and make a PR.I think I have a pretty simple implementation that converts the
tagandhierarchyto integers, and to deserialize takes theSavedVerifiedTicketto aTPMT_TK_VERIFIED. I'm not sure this is the cleanest implementation.