Posted On: May 3, 2024
Today, AWS introduces a new EC2 API to retrieve the public endorsement key (EkPub) for the Nitro Trusted Platform Module (NitroTPM) of an Amazon EC2 instance.
Amazon EC2 customers can now programmatically retrieve the unique public endorsement key from the NitroTPM of their EC2 instance using the GetInstanceTPMEkPub API.
There is no additional cost for using this API other than the cost for the usage of an EC2 instance. NitroTPM EkPub retrieval is available in AWS GovCloud (US) and all AWS Commercial Regions with the exception of Amazon Web Services China (Beijing) Region, operated by Sinnet, Amazon Web Services China (Ningxia) Region, operated by NWCD.
To learn more about NitroTPM and how to get started with this feature, visit the NitroTPM user guide.