Establishment of Trust in Internet of Things by Integrating Trusted Platform Module: To Counter Cybersecurity Challenges

With the increasing day-to-day acceptance of IOT computing, the issues related to it are also getting more attention. The current IOT computing infrastructure brings some security challenges concerned with the users/customers and CSP. The users can store their confidential data at IOT storage and can access them anytime when they need. Lack of trust exists among IOT users and between IOT users and CSP. The prevention of this risk is a big research issue and it needs to be solved. There is a need for trusted IOT computing in recent times to provide trusted services. Here, we propose the integration of TPM in IOT computing to performs cryptographic operations and provide hardware-based security. In this domain, different schemes and methods have been proposed to build trust in IOT computing, but the suitable solution has not been presented by these schemes because these schemes lack in terms of some security services. A comparative study based on trusted computing schemes has also been presented in this paper along with different implementations of critical analysis. Our study is based on an overview of the main issues and summarizing the literature along with their strengths and limitations. In the end, we integrated the trusted platform module in the IOT architecture to establish the trust in IOT computing and to enhance the cybersecurity challenges and evaluated it with the help of mathematical/algorithms/graph theory/matrices and logical diagrams.

Download Full-text

Trusted Computing Strengthens Cloud Authentication

The Scientific World JOURNAL ◽

10.1155/2014/260187 ◽

2014 ◽

Vol 2014 ◽

pp. 1-17 ◽

Cited By ~ 11

Author(s):

Eghbal Ghazizadeh ◽

Mazdak Zamani ◽

Jamalul-lail Ab Manan ◽

Mojtaba Alizadeh

Keyword(s):

Identity Management ◽

Trusted Computing ◽

Security And Privacy ◽

Trusted Platform Module ◽

Single Sign On ◽

Proposed Model ◽

Security Challenges ◽

Trusted Platform ◽

Federated Identity ◽

New Generation

Cloud computing is a new generation of technology which is designed to provide the commercial necessities, solve the IT management issues, and run the appropriate applications. Another entry on the list of cloud functions which has been handled internally is Identity Access Management (IAM). Companies encounter IAM as security challenges while adopting more technologies became apparent. Trust Multi-tenancy and trusted computing based on a Trusted Platform Module (TPM) are great technologies for solving the trust and security concerns in the cloud identity environment. Single sign-on (SSO) and OpenID have been released to solve security and privacy problems for cloud identity. This paper proposes the use of trusted computing, Federated Identity Management, and OpenID Web SSO to solve identity theft in the cloud. Besides, this proposed model has been simulated in .Net environment. Security analyzing, simulation, and BLP confidential model are three ways to evaluate and analyze our proposed model.

Download Full-text

Trusted Control Flow Integrity for JVM-Based Application

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.511-512.1219 ◽

2014 ◽

Vol 511-512 ◽

pp. 1219-1224

Author(s):

Song Zhu Mei ◽

Hai He Ba ◽

Jiang Chun Ren ◽

Zhi Ying Wang ◽

Jun Ma

Keyword(s):

Virtual Machine ◽

Trusted Computing ◽

Control Flow ◽

Java Virtual Machine ◽

Performance Impact ◽

Trusted Platform Module ◽

Java Application ◽

Control Flow Integrity ◽

Trusted Platform ◽

Full Consideration

This paper gives out a novel way, TCFI4J, to enforce the control flow integrity to the Java applications based on Java virtual machine. TCFI4J combines the trusted computing technology and Java virtual machine together. It takes full advantage of the Trusted Platform Module (TPM) and gives full consideration to the memory organization of the JVM. TCFI4J takes the integrity of part of JVMs memory image into account for the control flow integrity enforcement. The method presented in this paper can provide the user information about an applications behavior. It can significantly improve the security of a Java application with a tolerable performance impact.

Download Full-text

Trusted Computing

Cyber Security and Global Information Assurance ◽

10.4018/978-1-60566-326-5.ch017 ◽

2009 ◽

pp. 343-370

Author(s):

Jeff Teo

Keyword(s):

Trusted Computing ◽

Trusted Platform Module ◽

The World ◽

Trusted Hardware ◽

Computer Attacks ◽

History Of ◽

Software Implementations ◽

Computer Worm ◽

Open Standards ◽

Trusted Platform

Computer attacks of all sorts are commonplace in today’s interconnected, globalized society. A computer worm, written and released in one part of the world, can now traverse cyberspace in mere minutes creating havoc and untold financial hardship and loss. To effectively combat such threats and other novel and sophisticated assaults, our network defenses must be equipped to thwart such attacks. Yet, our software-dominated defenses are woefully inadequate (Bellovin, 2001). The Trusted Computing Group (TCG) has embarked on a mission to use an open standards-based interoperability framework utilizing both hardware and software implementations to defend against computer attacks. Specifically, the TCG uses a trusted hardware called the trusted platform module (TPM) in conjunction with TPM-enhanced software to provide better protection against such attacks. While millions of TPMs have been shipped with more expected annually, adoption of trusted computing technology enabled by the devices has been slow, despite escalating security infractions. This chapter will detail a brief history of trusted computing (TC), the goals of the TCG, and the workings of trusted platforms. The chapter will also look into how the TPM enables roots of trust to afford improved trust and security.

Download Full-text

Mobile Trusted Computing Based on MTM

Trust Modeling and Management in Digital Environments ◽

10.4018/978-1-61520-682-7.ch003 ◽

2010 ◽

pp. 58-77

Author(s):

Jan-Erik Ekberg

Keyword(s):

Trusted Computing ◽

Security Analysis ◽

Hardware Security ◽

Personal Computers ◽

Embedded Devices ◽

Computing Device ◽

Trusted Platform Module ◽

Consistent Manner ◽

Hardware Architectures ◽

Trusted Platform

Trusted computing (TC) denotes a set of security-related hardware and software mechanisms that make a computing device work in a consistent manner, even in the presence of external attacks. For personal computers, TC typically is interpreted to be a software architecture designed around the trusted platform module (TPM), a hardware chip residing on the motherboard and implemented according to the specifications of the Trusted Computing Group (Trusted Computing Group, 2008A). In embedded devices, the state-of-the art in terms of hardware security and operating systems is significantly different from what is present on personal computers. So to stimulate the take-up of TCG technology on handsets as well, the recently approved mobile trusted module (MTM) specification (Trusted Computing Group, 2008B) defines new interfaces and adaptation options that match the requirements of the handset business ecosystem, as well as the hardware in use in the embedded domain. This chapter provides an overview of a few hardware security architectures (in handsets) to introduce the reader to the problem domain. The main focus of the text is in introducing the MTM specification – by first presenting its main functional concepts, and then by adapting it to one of the hardware architectures first described, essentially presenting a plausible practical deployment. The author also presents a brief security analysis of the MTM component, and a few novel ideas regarding how the (mobile) trusted module can be extended, and be made more versatile.

Download Full-text

Secure OpenID Authentication Model by Using Trusted Computing

Abstract and Applied Analysis ◽

10.1155/2014/561487 ◽

2014 ◽

Vol 2014 ◽

pp. 1-15 ◽

Cited By ~ 2

Author(s):

E. Ghazizadeh ◽

Z. S. Shams Dolatabadi ◽

R. Khaleghparast ◽

M. Zamani ◽

A. A. Manaf ◽

...

Keyword(s):

Trusted Computing ◽

Identity Theft ◽

The Internet ◽

Cloud Environment ◽

Online Service ◽

Trusted Platform Module ◽

Single Sign On ◽

Internet Users ◽

One Time Password ◽

Trusted Platform

The growth of Internet online services has been very quick in recent years. Each online service requires Internet users to create a new account to use the service. The problem can be seen when each user usually needs more than one service and, consequently, has numerous accounts. These numerous accounts have to be managed in a secure and simple way to be protected against identity theft. Single sign-on (SSO) and OpenID have been used to decrease the complexity of managing numerous accounts required in the Internet identity environment. Trusted Platform Module (TPM) and Trust Multitenancy are great trusted computing-based technologies to solve security concerns in the Internet identity environment. Since trust is one of the pillars of security in the cloud, this paper analyzes the existing cloud identity techniques in order to investigate their strengths and weaknesses. This paper proposes a model in which One Time Password (OTP), TPM, and OpenID are used to provide a solution against phishing as a common identity theft in cloud environment.

Download Full-text

Design and Implementation of Inter-operable and Secure Agent Migration Protocol

The International Arab Journal of Information Technology ◽

10.34028/iajit/17/4/4 ◽

2020 ◽

Vol 17 (4) ◽

pp. 461-470

Author(s):

Shakir-Ullah Shah ◽

Jamil Ahmad ◽

Najeeb-ur Rehman

Keyword(s):

Trusted Computing ◽

Data Systems ◽

Research Issues ◽

Trusted Platform Module ◽

Personal Assistance ◽

Active Research ◽

Big Data Systems ◽

Trusted Platform ◽

Performance Results ◽

Agent Migration

Mobile agent technology is an active research topic and has found its uses in various diverse areas ranging from simple personal assistance to complex distributed big data systems. Its usage permits offline and autonomous execution as compared to classical distributed systems. The free roaming nature of agents makes it prone to several security threats during its transit state, with an added overhead in its interoperability among different types of platforms. To address these problems, both software and hardware based approaches have been proposed to ensure protection at various transit points. However, these approaches do not ensure interoperability and protection to agents during transit over a channel, simultaneously. In this regard, an agent requires a trustworthy, interoperable, and adaptive protocol for secure migration. In this paper, to answer these research issues, we first analyse security flaws in existing agent protection frameworks. Second, we implemented a novel migration architecture which is: 1) fully inter-operable compliance to the Foundation for Intelligent Physical Agents (FIPA) and 2) trustworthy based on Computing Trusted Platform Module (TPM). The proposed approach is validated by testing on software TPM of IBM, JSR321, and jTPMTools as TPM and Trusted Computing Software Stack (TSS) interfaces, JADE-agent framework and 7Mobility Service (JIPMS). Validation is also performed on systems bearing physical TPM-chips. Moreover, some packages of JIPMS are also modified by embedding our proposed approach into their functions. Our performance results show that our approach merely adds an execution overhead during the binding and unbinding phases

Download Full-text

Towards a New Framework for TPM Compliance Testing

Jurnal Teknologi ◽

10.11113/jt.v73.4186 ◽

2015 ◽

Vol 73 (2) ◽

Author(s):

Usama Tharwat Elhagari ◽

Bharanidharan Shanmugam ◽

Jamalul-lail Ab. Manan

Keyword(s):

Integrated Circuit ◽

Trusted Computing ◽

System Level ◽

Trusted Platform Module ◽

Compliance Testing ◽

Trusted Hardware ◽

Hardware Component ◽

Computing Platforms ◽

Trusted Platform ◽

New Framework

Trusted Computing Group (TCG) has proposed the Trusted Computing (TC) concept. Subsequently, TC becomes a common base for many new computing platforms, called Trusted Platform (TP) architecture (hardware and software) that, practically, has a built-in trusted hardware component mounted at the hardware layer and a corresponding trusted software component installed at the operating system level. The trusted hardware component is called Trusted Platform Module (TPM) whose specification has been issued by TCG group and it is implemented by the industry as a tamper-resistant integrated circuit. In practice, the security of an IT TPM-enabled system relies on the correctness of its mounted TPM. Thus, TPM testing is urgently needed to assist in building confidence of the users on the security functionality provided by the TPM. This paper presents the state of the art of the modelling methods being used in the TPM compliance testing as well as it demonstrates some of the important attacks against TPM. Finally, the paper proposes new framework criteria for TPM Testing that aim at increasing the quality of TPM testing.

Download Full-text

Remote Attestation on Behavioral Traces for Crowd Quality Control Based on Trusted Platform Module

Security and Communication Networks ◽

10.1155/2021/8859618 ◽

2021 ◽

Vol 2021 ◽

pp. 1-12

Author(s):

Donglai Fu ◽

Yanhua Liu

Keyword(s):

Quality Control ◽

Trusted Computing ◽

Alternative Solution ◽

Remote Attestation ◽

Trusted Platform Module ◽

Alternative Approach ◽

Trusted Platform ◽

New Evidence

Behavioral traces of workers have emerged as a new evidence to check the quality of their produced outputs in crowd computing. Whether the evidence is trustworthy or not is a key problem during the process. Challenges will be encountered in addressing this issue, because the evidence comes from unknown or adversarial workers. In this study, we proposed an alternative approach to ensure trustworthy evidence through a hardware-based remote attestation to bridge the gap. The integrity of the evidence was used as the trustworthy criterion. Trusted Platform Module (TPM) was considered the trusted anchor inspired by trusted computing to avoid unreliable or malicious workers. The module carefully recorded and stored many workers’ behavioral traces in the storage measurement log (SML). Each item in the log was extended to a platform configuration register (PCR) by the occurrence sequence of each event. The PCR was a tamper-proof storage inside the TPM. The value of the PCR was also considered evidence together with the SML. The evidence was sent to the crowdsourcing platform with the TPM signature. The platform checked the integrity of the evidence by a series of operations, such as validating the signature and recomputing the SML hash. This process was designed as a remote attestation protocol. The effectiveness, efficiency, and security of the protocol were verified theoretically and through experiments based on the open dataset, WebCrowd25K, and custom dataset. Results show that the proposed method is an alternative solution for ensuring the integrity of behavioral traces.

Download Full-text

Secure Bootstrapping Using the Trusted Platform Module

Algorithmic Strategies for Solving Complex Problems in Cryptography - Advances in Information Security, Privacy, and Ethics ◽

10.4018/978-1-5225-2915-6.ch014 ◽

2018 ◽

pp. 167-185 ◽

Cited By ~ 1

Author(s):

Kannan Balasubramanian ◽

Ahmed Mahmoud Abbas

Keyword(s):

Memory Management ◽

Trusted Computing ◽

Computer Hardware ◽

Input Output ◽

Trusted Platform Module ◽

Buffer Overflows ◽

Cryptographic Algorithms ◽

Output System ◽

Trusted Platform ◽

Basic Input

The protection of Computer Hardware and Software using Cryptographic algorithms has assumed importance in the recent years. The Trusted Computing Group (TCG) has put forward certain conditions to be met by the computer hardware, software and firmware so that the devices may be considered trusted. The Trusted Platform Module is a hardware device that will authenticate the code modules contained in the Basic Input/Output System (BIOS) of a computer to ensure that the Computer System starts in a trustworthy state. This device can also protect against Memory Management attacks including Buffer Overflows and Memory Pointer attacks.

Download Full-text