Provisioning TPM 2.0

The TPM Provisioning process in the manufacturing (MFG) industry has the following requirements:

• TPMs must be available on pluggable cards for all POWER9™ platforms. This requirement provides for a single point of control for TPM Provisioning. TPM Provisioning is designed based on the POWER7®/POWER8® Vital Product Data (VPD)/Anchor Card process.
• TPM Provisioning must be performed through an offline subassembly process (not the MFG box assembly-line process).
• After TPM Provisioning, the TPM card is still considered a generic card that does not have system or order-specific information.
• After the TPM card is provisioned, it becomes an Asset Protection Classification number 3 (APC3) part (as defined in secure supply chain tracking).
• TPM Provisioning requires connectivity to an IBM® certificate authority while provisioning the TPM card.
• TPM Provisioning requires a process to restore the TPM card to a shippable state for canceled fulfillments.