Secure hardware for cross-device trusted applications

What is claimed is: 1. A computing device, comprising: secure hardware, comprising: a shared secret, the shared secret being shared by the secure hardware and a server computing system, the shared secret being provisioned by at least one of the server computing system or a provisioning computing system of a party affiliated with the server computing system; and a cryptographic engine; wherein the secure hardware synchronizes to clock values provided by the server computing system; wherein the secure hardware generates a message for accessing a remote resource of the server computing system, the message generated responsive to the secure hardware receiving a command; wherein the cryptographic engine of the secure hardware encrypts the message for transmission to the server computing system, the cryptographic engine encrypts the message using the shared secret or a key generated from the shared secret to generate an encrypted message; and wherein the computing device transmits the encrypted message to the server computing system, the remote resource of the server computing system being accessible based on the encrypted message. 2. The computing device of claim 1 , further comprising: at least one processor; and storage external to the secure hardware, the storage comprises computer-executable instructions that, when executed by the at least one processor, cause the at least one processor to perform acts including: sending the command to the secure hardware; receiving the encrypted message from the secure hardware; and transmitting the encrypted message to the server computing system; wherein the secure hardware comprises: at least one secure processor shielded from access by or interference from sources external to the secure hardware; and secure storage that is inaccessible by the sources external to the secure hardware. 3. The computing device of claim 1 , further comprising: at least one processor; and storage external to the secure hardware, the storage comprises computer-executable instructions executable by the at least one processor during a first set of time periods, the at least one processor being prohibited from executing the computer-executable instructions during a second set of time periods, the first set of time periods and the second set of time periods being non-overlapping; wherein the computer-executable instructions, when executed by the at least one processor, cause the at least one processor to perform acts including: responsive to being executed by the at least one processor during the first set of time periods: sending the command to the secure hardware; receiving the encrypted message from the secure hardware; and transmitting the encrypted message to the server computing system; wherein the at least one processor generates the message for accessing the remote resource of the server computing system during the second set of time periods, and the at least one processor is prohibited from generating the message for accessing the remote resource of the server computing system during the first set of time periods; and wherein the cryptographic engine is executable by the at least one processor during the second set of time periods, and the at least one processor is prohibited from executing the cryptographic engine during the first set of time periods. 4. The computing device of claim 1 , the encrypted message causes the server computing system to write data to remote storage of the server computing system. 5. The computing device of claim 1 , the encrypted message causes the server computing system to read data from remote storage of the server computing system. 6. The computing device of claim 5 , the cryptographic engine decrypts an encrypted reply message using at least one of the shared secret or the key generated from the shared secret, the encrypted reply message being responsive to the encrypted message, the encrypted reply message decrypted to output the data; and the secure hardware further comprising: secure storage, the secure storage locally stores the data. 7. The computing device of claim 5 , wherein differing secure hardware of a differing computing device caused the server computing system to write the data to the remote storage of the server computing system. 8. The computing device of claim 1 , the encrypted message causes a clock value to be retrieved from the server computing system. 9. The computing device of claim 1 , the shared secret further being shared by differing secure hardware of a differing computing device; wherein the secure hardware, the differing secure hardware of the differing computing device, and the server computing system are provisioned with the shared secret by at least one of the server computing system or the provisioning computing system of the party affiliated with the server computing system. 10. The computing device of claim 1 , wherein: the secure hardware verifies whether a condition specified in a policy is satisfied based on data retrieved from the server computing system, the policy corresponds to a hardware protected object received by the secure hardware; and the cryptographic engine decrypts the hardware protected object using at least one of the shared secret or the key generated from the shared secret when the condition is identified as being satisfied, and the cryptographic engine is prohibited from decrypting the hardware protected object when the condition is identified as not being satisfied. 11. The computing device of claim 1 , the secure hardware being a physical Trusted Platform Module (TPM) chip. 12. The computing device of claim 1 , further comprising: a processing platform, comprising: at least one processor that executes an operating system of the computing device; and at least one secure processor in communication with the at least one processor, wherein the secure hardware comprises the at least one secure processor, and the at least one secure processor has access to the shared secret; wherein the at least one processor is prohibited from accessing the shared secret. 13. The computing device of claim 1 , the secure hardware comprising: protected memory of the computing device, the protected memory comprising: a software-based Trusted Platform Module (TPM), the software-based TPM comprising the shared secret and the cryptographic engine. 14. The computing device of claim 1 , the secure hardware comprising: a secure enclave on a processor, the secure enclave stores the shared secret and protects the shared secret from sources external to the secure hardware. 15. The computing device of claim 1 , the cryptographic engine executes a cryptographic algorithm using the shared secret or the key generated from the shared secret to perform at least one of authentication or attestation. 16. Secure hardware, comprising: a shared secret, the shared secret being shared by the secure hardware and a server computing system; a symmetric key generated by the secure hardware based on the shared secret; and a cryptographic engine; wherein the secure hardware synchronizes to clock values provided by the server computing system; wherein the secure hardware generates a message for accessing remote storage of the server computing system, the message generated responsive to the secure hardware receiving a command; and wherein the cryptographic engine of the secure hardware encrypts the message for transmission to the server computing system, the cryptographic engine encrypts the message using the symmetric key to generate an encrypted message, the encrypted message