TrustedBaaS: Blockchain-Enabled Distributed and Higher-Level Trusted Platform

2020 ◽  
Vol 183 ◽  
pp. 107600
Author(s):  
Zhaofeng Ma ◽  
Weizhe Zhao ◽  
Shoushan Luo ◽  
Lingyun Wang
Keyword(s):  
Trusted Platform

An Advanced Trusted Platform for mobile phone devices

2005 ◽  
Vol 10 (2) ◽  
pp. 96-104
Author(s):  
Carlin Covey ◽  
Mark Redman ◽  
Thomas Tkacik
Keyword(s):  
Mobile Phone ◽  
Trusted Platform

Erzeugung elektronischer Signaturen mittels Trusted Platform Module

2007 ◽  
Vol 31 (5) ◽  
pp. 357-361 ◽  
Author(s):  
Frederic Stumpf ◽  
Markus Sacher ◽  
Alexander Roßnagel ◽  
Claudia Eckert
Keyword(s):  
Trusted Platform Module ◽  
Trusted Platform

Architectural Design of Trusted Platform for IaaS Cloud Computing

2018 ◽  
Vol 8 (2) ◽  
pp. 47-65 ◽  
Author(s):  
Ubaidullah Alias Kashif ◽  
Zulfiqar Ali Memon ◽  
Shafaq Siddiqui ◽  
Abdul Rasheed Balouch ◽  
Rakhi Batra
Keyword(s):  
Cloud Computing ◽  
Service Provider ◽  
Architectural Design ◽  
Cloud Services ◽  
Core Component ◽  
Malicious Activity ◽  
The Core ◽  
Potential Benefits ◽  
Trusted Platform ◽  
Access Right

This article describes how the enormous potential benefits provided by the cloud services, made enterprises to show huge interest in adopting cloud computing. As the service provider has control over the entire data of an organization stored onto the cloud, a malicious activity, whether internal or external can tamper with the data and computation. This causes enterprises to lack trust in adopting services due to privacy, security and trust issues. Despite of having such issues, the consumer has no root level access right to secure and check the integrity of procured resources. To establish a trust between the consumer and the provider, it is desirable to let the consumer to check the procured platform hosted at provider side for safety and security. This article proposes an architectural design of a trusted platform for the IaaS cloud computing by the means of which the consumer can check the integrity of a guest platform. TCG's TPM is deployed and used on the consumer side as the core component of the proposed architecture and it is distributed between the service provider and the consumer.

Enhancing the Security of FPGA-SoCs via the Usage of ARM TrustZone and a Hybrid-TPM

2022 ◽  
Vol 15 (1) ◽  
pp. 1-26
Author(s):  
Mathieu Gross ◽  
Konrad Hohentanner ◽  
Stefan Wiehler ◽  
Georg Sigl
Keyword(s):  
Software Design ◽  
Hardware Accelerators ◽  
Biometric Authentication ◽  
Trusted Platform Module ◽  
Start Up ◽  
Execution Environment ◽  
On Chip ◽  
Trusted Platform ◽  
Trusted Execution Environment ◽  
Entropy Source

Isolated execution is a concept commonly used for increasing the security of a computer system. In the embedded world, ARM TrustZone technology enables this goal and is currently used on mobile devices for applications such as secure payment or biometric authentication. In this work, we investigate the security benefits achievable through the usage of ARM TrustZone on FPGA-SoCs. We first adapt Microsoft’s implementation of a firmware Trusted Platform Module (fTPM) running inside ARM TrustZone for the Zynq UltraScale+ platform. This adaptation consists in integrating hardware accelerators available on the device to fTPM’s implementation and to enhance fTPM with an entropy source derived from on-chip SRAM start-up patterns. With our approach, we transform a software implementation of a TPM into a hybrid hardware/software design that could address some of the security drawbacks of the original implementation while keeping its flexibility. To demonstrate the security gains obtained via the usage of ARM TrustZone and our hybrid-TPM on FPGA-SoCs, we propose a framework that combines them for enabling a secure remote bitstream loading. The approach consists in preventing the insecure usages of a bitstream reconfiguration interface that are made possible by the manufacturer and to integrate the interface inside a Trusted Execution Environment.

Building a Trusted Environment for Security Applications

2013 ◽  
pp. 334-360
Author(s):  
Giovanni Cabiddu ◽  
Antonio Lioy ◽  
Gianluca Ramunno
Keyword(s):  
Trusted Computing ◽  
Low Cost ◽  
Computing Platform ◽  
Critical Data ◽  
Security Controls ◽  
Security Applications ◽  
Secure Storage ◽  
Cryptographic Keys ◽  
Correct Program ◽  
Trusted Platform

Security controls (such as encryption endpoints, payment gateways, and firewalls) rely on correct program execution and secure storage of critical data (such as cryptographic keys and configuration files). Even when hardware security elements are used (e.g. cryptographic accelerators) software is still—in the form of drivers and libraries—critical for secure operations. This chapter introduces the features and foundations of Trusted Computing, an architecture that exploits the low-cost TPM chip to measure the integrity of a computing platform. This allows the detection of static unauthorized manipulation of binaries (be them OS components or applications) and configuration files, hence quickly detecting software attacks. For this purpose, Trusted Computing provides enhanced security controls, such as sealed keys (that can be accessed only by good applications when the system is in a safe state) and remote attestation (securely demonstrating the software state of a platform to a remote network verifier). Besides the theoretical foundation, the chapter also guides the reader towards creation of applications that enhance their security by using the features provided by the underlying PC-class trusted platform.

Sign in / Sign up

Export Citation Format

Share Document