Trusted Computing Strengthens Cloud Authentication

Cloud computing is a new generation of technology which is designed to provide the commercial necessities, solve the IT management issues, and run the appropriate applications. Another entry on the list of cloud functions which has been handled internally is Identity Access Management (IAM). Companies encounter IAM as security challenges while adopting more technologies became apparent. Trust Multi-tenancy and trusted computing based on a Trusted Platform Module (TPM) are great technologies for solving the trust and security concerns in the cloud identity environment. Single sign-on (SSO) and OpenID have been released to solve security and privacy problems for cloud identity. This paper proposes the use of trusted computing, Federated Identity Management, and OpenID Web SSO to solve identity theft in the cloud. Besides, this proposed model has been simulated in .Net environment. Security analyzing, simulation, and BLP confidential model are three ways to evaluate and analyze our proposed model.

Download Full-text

Establishment of Trust in Internet of Things by Integrating Trusted Platform Module: To Counter Cybersecurity Challenges

Complexity ◽

10.1155/2020/6612919 ◽

2020 ◽

Vol 2020 ◽

pp. 1-9

Author(s):

Mohammad Faisal ◽

Ikram Ali ◽

Muhammad Sajjad Khan ◽

Su Min Kim ◽

Junsu Kim

Keyword(s):

Critical Analysis ◽

Trusted Computing ◽

Research Issue ◽

Trusted Platform Module ◽

Security Services ◽

Security Challenges ◽

Confidential Data ◽

Mathematical Algorithms ◽

Trusted Platform ◽

Computing Infrastructure

With the increasing day-to-day acceptance of IOT computing, the issues related to it are also getting more attention. The current IOT computing infrastructure brings some security challenges concerned with the users/customers and CSP. The users can store their confidential data at IOT storage and can access them anytime when they need. Lack of trust exists among IOT users and between IOT users and CSP. The prevention of this risk is a big research issue and it needs to be solved. There is a need for trusted IOT computing in recent times to provide trusted services. Here, we propose the integration of TPM in IOT computing to performs cryptographic operations and provide hardware-based security. In this domain, different schemes and methods have been proposed to build trust in IOT computing, but the suitable solution has not been presented by these schemes because these schemes lack in terms of some security services. A comparative study based on trusted computing schemes has also been presented in this paper along with different implementations of critical analysis. Our study is based on an overview of the main issues and summarizing the literature along with their strengths and limitations. In the end, we integrated the trusted platform module in the IOT architecture to establish the trust in IOT computing and to enhance the cybersecurity challenges and evaluated it with the help of mathematical/algorithms/graph theory/matrices and logical diagrams.

Download Full-text

Secure OpenID Authentication Model by Using Trusted Computing

Abstract and Applied Analysis ◽

10.1155/2014/561487 ◽

2014 ◽

Vol 2014 ◽

pp. 1-15 ◽

Cited By ~ 2

Author(s):

E. Ghazizadeh ◽

Z. S. Shams Dolatabadi ◽

R. Khaleghparast ◽

M. Zamani ◽

A. A. Manaf ◽

...

Keyword(s):

Trusted Computing ◽

Identity Theft ◽

The Internet ◽

Cloud Environment ◽

Online Service ◽

Trusted Platform Module ◽

Single Sign On ◽

Internet Users ◽

One Time Password ◽

Trusted Platform

The growth of Internet online services has been very quick in recent years. Each online service requires Internet users to create a new account to use the service. The problem can be seen when each user usually needs more than one service and, consequently, has numerous accounts. These numerous accounts have to be managed in a secure and simple way to be protected against identity theft. Single sign-on (SSO) and OpenID have been used to decrease the complexity of managing numerous accounts required in the Internet identity environment. Trusted Platform Module (TPM) and Trust Multitenancy are great trusted computing-based technologies to solve security concerns in the Internet identity environment. Since trust is one of the pillars of security in the cloud, this paper analyzes the existing cloud identity techniques in order to investigate their strengths and weaknesses. This paper proposes a model in which One Time Password (OTP), TPM, and OpenID are used to provide a solution against phishing as a common identity theft in cloud environment.

Download Full-text

Cryptographic Keys Generating and Renewing System for IoT Network Nodes—A Concept

Sensors ◽

10.3390/s20175012 ◽

2020 ◽

Vol 20 (17) ◽

pp. 5012

Author(s):

Janusz Furtak

Keyword(s):

Data Exchange ◽

Security And Privacy ◽

Critical Element ◽

Certification Authority ◽

Trusted Platform Module ◽

Network Nodes ◽

Cryptographic Keys ◽

Iot Devices ◽

System Nodes ◽

Trusted Platform

Designers and users of the Internet of Things (IoT) are devoting more and more attention to the issues of security and privacy as well as the integration of data coming from various areas. A critical element of cooperation is building mutual trust and secure data exchange. Because IoT devices usually have small memory resources, limited computing power, and limited energy resources, it is often impossible to effectively use a well-known solution based on the Certification Authority. This article describes the concept of the system for a cryptographic Key Generating and Renewing system (KGR). The concept of the solution is based on the use of the hardware Trusted Platform Module (TPM) v2.0 to support the procedures of creating trust structures, generating keys, protecting stored data, and securing data exchange between system nodes. The main tasks of the system are the secure distribution of a new symmetric key and renewal of an expired key for data exchange parties. The KGR system is especially designed for clusters of the IoT nodes but can also be used by other systems. A service based on the Message Queuing Telemetry Transport (MQTT) protocol will be used to exchange data between nodes of the KGR system.

Download Full-text

Trusted Control Flow Integrity for JVM-Based Application

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.511-512.1219 ◽

2014 ◽

Vol 511-512 ◽

pp. 1219-1224

Author(s):

Song Zhu Mei ◽

Hai He Ba ◽

Jiang Chun Ren ◽

Zhi Ying Wang ◽

Jun Ma

Keyword(s):

Virtual Machine ◽

Trusted Computing ◽

Control Flow ◽

Java Virtual Machine ◽

Performance Impact ◽

Trusted Platform Module ◽

Java Application ◽

Control Flow Integrity ◽

Trusted Platform ◽

Full Consideration

This paper gives out a novel way, TCFI4J, to enforce the control flow integrity to the Java applications based on Java virtual machine. TCFI4J combines the trusted computing technology and Java virtual machine together. It takes full advantage of the Trusted Platform Module (TPM) and gives full consideration to the memory organization of the JVM. TCFI4J takes the integrity of part of JVMs memory image into account for the control flow integrity enforcement. The method presented in this paper can provide the user information about an applications behavior. It can significantly improve the security of a Java application with a tolerable performance impact.

Download Full-text

Security Challenges in Healthcare Cloud Computing: A Systematic Review

Global Journal of Health Science ◽

10.5539/gjhs.v9n3p157 ◽

2016 ◽

Vol 9 (3) ◽

pp. 157 ◽

Cited By ~ 14

Author(s):

Esmaeil Mehraeen ◽

Marjan Ghazisaeedi ◽

Jebraeil Farzi ◽

Saghar Mirshekari

Keyword(s):

Systematic Review ◽

Cloud Computing ◽

Access Control ◽

Identity Management ◽

Research Question ◽

Security And Privacy ◽

Healthcare Data ◽

Security Challenges ◽

Authentication And Authorization ◽

Hypervisor Security

BACKGROUND: Healthcare data are very sensitive records that should not be made available to unauthorized people in order for protecting patient's information security. However, in progressed technologies as cloud computing which are vulnerable to cyber gaps that pose an adverse impact on the security and privacy of patients’ electronic health records and in these situations, security challenges of the wireless networks need to be carefully understood and considered. Recently, security concerns in cloud computing environment are a matter of challenge with rising importance.OBJECTIVE: In this study a systematic review to investigate the security challenges in cloud computing was carried out. We focused mainly on healthcare cloud computing security with an organized review of 210 full text articles published between 2000 and 2015.METHOD: A systematic literature review was conducted including PubMed, Science direct, Embase, ProQuest, Web of science, Cochrane, Emerald, and Scopus databases.FINDINGS: Using the strategies described, 666 references retrieved (for research question one 365, research question two 201, and research question three 100 references).IMPROVEMENTS: Review of articles showed that for ensuring healthcare data security, it is important to provide authentication, authorization and access control within cloud's virtualized network. Issues such as identity management and access control, Internet-based access, authentication and authorization and cybercriminals are major concerns in healthcare cloud computing. To manage these issues many involved events such as Hybrid Execution Model, VCC-SSF, sHype Hypervisor Security Architecture, Identity Management, and Resource Isolation approaches have to be defined for using cloud computing threat management processes.

Download Full-text

Trusted Computing

Cyber Security and Global Information Assurance ◽

10.4018/978-1-60566-326-5.ch017 ◽

2009 ◽

pp. 343-370

Author(s):

Jeff Teo

Keyword(s):

Trusted Computing ◽

Trusted Platform Module ◽

The World ◽

Trusted Hardware ◽

Computer Attacks ◽

History Of ◽

Software Implementations ◽

Computer Worm ◽

Open Standards ◽

Trusted Platform

Computer attacks of all sorts are commonplace in today’s interconnected, globalized society. A computer worm, written and released in one part of the world, can now traverse cyberspace in mere minutes creating havoc and untold financial hardship and loss. To effectively combat such threats and other novel and sophisticated assaults, our network defenses must be equipped to thwart such attacks. Yet, our software-dominated defenses are woefully inadequate (Bellovin, 2001). The Trusted Computing Group (TCG) has embarked on a mission to use an open standards-based interoperability framework utilizing both hardware and software implementations to defend against computer attacks. Specifically, the TCG uses a trusted hardware called the trusted platform module (TPM) in conjunction with TPM-enhanced software to provide better protection against such attacks. While millions of TPMs have been shipped with more expected annually, adoption of trusted computing technology enabled by the devices has been slow, despite escalating security infractions. This chapter will detail a brief history of trusted computing (TC), the goals of the TCG, and the workings of trusted platforms. The chapter will also look into how the TPM enables roots of trust to afford improved trust and security.

Download Full-text

Personal Trusted Platform Module for the Multi-Core System of 5G Security and Privacy

2020 ELEKTRO ◽

10.1109/elektro49696.2020.9130294 ◽

2020 ◽

Author(s):

Vladimir Ruchkin ◽

Vladimir Fulin ◽

Vitaly Romanchuk ◽

Alexei Koryachko ◽

Ekaterina Ruchkina

Keyword(s):

Security And Privacy ◽

Core System ◽

Trusted Platform Module ◽

Trusted Platform ◽

5G Security

Download Full-text

Identifying the Emerging e-Health Technologies To Ubiquity 2.0 and Beyond

Ubiquitous Health and Medical Informatics ◽

10.4018/978-1-61520-777-0.ch001 ◽

2010 ◽

pp. 1-18

Author(s):

Sabah Mohammed ◽

Jinan Fiaidhi

Keyword(s):

Identity Management ◽

Single Point ◽

Healthcare Delivery ◽

Relevant Information ◽

Security And Privacy ◽

Great Promise ◽

Healthcare Organizations ◽

Web Technologies ◽

Security Challenges ◽

The Web

Achieving improvements and optimum healthcare delivery has become a bipartisan top priority for several governments and institutions. The ability to meet this goal depends on the exchange of information within and across healthcare communities. The real challenge for any healthcare initiative is at the application level, where patient data may be stored on hundreds of different clinical systems such as lab, radiology, or pharmacy systems, and various clinical applications such as electronic medical record (EHRs), that use different protocols and schemas. In an attempt to overcome these challenges, many organizations have used enterprise-oriented integration platforms to transform and translate information so that disparate systems could exchange information internally and externally. However, the development and ongoing maintenance of such healthcare systems has become extremely expensive due to the growing complexity of healthcare organizations as they acquire more systems to meet clinical and business needs. As a result, healthcare communities continue to face the same challenge: how to achieve a level of interoperability for accessing all relevant information about a patient from a single point, which is universally becoming the Web, as well as to ensure accuracy, security, and privacy of all the relevant data. This chapter provides a roadmap solution based on the emerging web technologies that hold great promise for addressing these challenges. The roadmap is termed as the “ubiquity 2.0 trend.” This chapter also highlights the security challenges and the emerging web-oriented identity management technologies to provide a single, common user credential that is trusted, secure, and widely supported across the Web and within the healthcare enterprises.

Download Full-text

Mobile Trusted Computing Based on MTM

Trust Modeling and Management in Digital Environments ◽

10.4018/978-1-61520-682-7.ch003 ◽

2010 ◽

pp. 58-77

Author(s):

Jan-Erik Ekberg

Keyword(s):

Trusted Computing ◽

Security Analysis ◽

Hardware Security ◽

Personal Computers ◽

Embedded Devices ◽

Computing Device ◽

Trusted Platform Module ◽

Consistent Manner ◽

Hardware Architectures ◽

Trusted Platform

Trusted computing (TC) denotes a set of security-related hardware and software mechanisms that make a computing device work in a consistent manner, even in the presence of external attacks. For personal computers, TC typically is interpreted to be a software architecture designed around the trusted platform module (TPM), a hardware chip residing on the motherboard and implemented according to the specifications of the Trusted Computing Group (Trusted Computing Group, 2008A). In embedded devices, the state-of-the art in terms of hardware security and operating systems is significantly different from what is present on personal computers. So to stimulate the take-up of TCG technology on handsets as well, the recently approved mobile trusted module (MTM) specification (Trusted Computing Group, 2008B) defines new interfaces and adaptation options that match the requirements of the handset business ecosystem, as well as the hardware in use in the embedded domain. This chapter provides an overview of a few hardware security architectures (in handsets) to introduce the reader to the problem domain. The main focus of the text is in introducing the MTM specification – by first presenting its main functional concepts, and then by adapting it to one of the hardware architectures first described, essentially presenting a plausible practical deployment. The author also presents a brief security analysis of the MTM component, and a few novel ideas regarding how the (mobile) trusted module can be extended, and be made more versatile.

Download Full-text

Technical Interoperability to Solve Cross-Domain Issues Among Federation Systems

International Journal of Smart Security Technologies ◽

10.4018/ijsst.2020010102 ◽

2020 ◽

Vol 7 (1) ◽

pp. 21-40

Author(s):

Hasnae L'Amrani ◽

Younès El Bouzekri El Idrissi ◽

Rachida Ajhoun

Keyword(s):

Identity Management ◽

Management Systems ◽

Digital Identity ◽

Identity Information ◽

Cross Domain ◽

Security Challenges ◽

Identity Management Systems ◽

Federated Identity Management ◽

Management Approaches ◽

Federated Identity

Digital identity management with the metamorphosis of web services enforces new security challenges. A set of identity management systems exists to deal with these identities, alongside the goal of improving user experience and gain secure access. Nowadays, one faces a large number of heterogeneous identity management approaches. This study treated several identity management systems. The federated system makes proof of it eligibility for the identity management. Thus, the researcher interest is on the federated model. Since it consists of the distribution of digital identity between different security domains. The base of security domains is a trust agreement between the entities in communication. Federated identity management faces the problem of interoperability between heterogeneous federated systems. This study is an approach of a technical interoperability between the federations. The authors propose an approach that will permit inter-operation and exchange identity information among heterogeneous federations.

Download Full-text