HIRS
Host Integrity at Runtime and Start-up (HIRS) is a Proof of Concept prototype developed by the National Security Agency Cybersecurity Directorate to demonstrate Trusted Platform Module (TPM) 2.0 provisioning and supply chain validation. The software features a web-based Attestation Certificate Authority (ACA) that processes identity requests and issues Attestation Certificates or Local Device ID certificates to validated devices. It includes a provisioner application for installation on client devices. Key capabilities include performing TCG-based supply chain validation known as an Acceptance Test, which optionally validates Endorsement and Platform Certificates to verify hardware provenance against manufacturer records. The system also conducts firmware integrity validation by processing Reference Integrity Manifests, verifying TPM Quotes against event logs, and ensuring boot file hashes match OEM specifications. HIRS is designed strictly for testing and development purposes to spur adoption of trusted comp