C'è un documento molto utile su questo da IBM che può illuminarti sulla tua query .
It is necessary to enable remote
parties that have established trust in the initial environment
to also establish trust in the vTPM environment at
a later point in time.
For example, the strong binding of TPM credentials
to those of the hardware platform is important to challenging
parties during remote attestation. The challenger
must follow the trust chain from the target platform’s
hardware TPM through a virtual TPM and into the runtime
environment of the associated virtual machine.
Prestare particolare attenzione alla pagina 6.