Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Introduction
verification request
verification data
Verifier
Attestation of Remote Platform Identify specific platform Verify software stack on remote platform
Platform
Use Case
Corporate Network
TPM
Trusted Platform Module Secure crypto-processor
verification data
Verifier
Platform
TPM Specification
TPM Specification
TPM Chips
TPM Example
300 Million PCs have shipped with a chip called the Trusted Platform Module (TPM)
TPM Architecture
Platform
MBR/OS Loader
BIOS
Root of Trust
Root of Trust in Integrity Measurement
BIOS
MBR/OS Loader
Operating System
Application
Verifier
7) ...
1) Read_PCR
3) Cert{PKAIK}SKTPM {PCT}SKAIK
2) {PCR} SKAIK
Lookup PCR
ok
TPM
PKTPM & SKTPM (Endorsement key) PKAIK & SKAIK (Attestation Identity Key)
DB
EK is one-time unique per TPM AIK can be used anew for each attestation
Manufacturer
PKTPM & SKTPM
TPM
SKTPM
..
Verifier
TPM
SKTPM
Problem! Identify legitimate TPMs from fake
2. Searches PKTPM
TPM
PKTPM & SKTPM (Endorsement key)
1. Cert{PKAIK } SKTPM
Verifier
DAA{SKAIK1}
Verifier1
TPM
SKAIK1 SKAIK2
Cannot tell if SKAIK1 & SKAIK12 Are from the same TPM
DAA{SKAIK2}
Verifier2
TPM
Commit to
Issuer
Proves that
TPM
Verifier1
TPM Proves the exponent is related Used for blacklisting Used for linking transactions from the same TPM
Secure Storage
SKENC
TPM_Seal(Blob, PCR)
Stores Blob
TPM_UnSeal(Blob)
SKENC, COUNTER = 0
TPM_Seal(Blob, PCR)
Stores Blob
TPM_UnSeal(Blob)
If true Blob = Decrypt{Blob} SKENC && COUNTER < N COUNTER++ If false return failure
Music can be played for 30 days only
http://www.trustedcomputinggroup.org/resources/tcg_software_stack_tss_specification
DATABASE
Can provide Tamper Proofing / Detection Supports Cryptographic functions (software or hardware based)
SERVER
TRUSTED HW
Function Context (OpenSSL 0.9.7f) RSA signature 1024 bits 2048 bits RSA verification 1024 bits 2048 bits SHA-1 1 KB 64 KB 1 MB 3 DES 1 KB 64 KB 1 MB AES 128 1 KB DMA xfer end-to-end
IBM 4764 (per second) 848 316 470 1157 1242 976-1087 1.42 MB 18.6 MB 21 24 MB 1.08 MB 7.73 MB 8.56 MB 14+ MB 75 90 MB
IBM 4764
Tamper resistant and responsive design, FIPS level 4 certified Limited resources Synchronous communication channel with host Hardware crypto engine
22
PKTDB H(L3CODE)
SKOS
Miniboot 0 Layer 0
PKMAN SKMAN
SCPU - 4764
PKA : Public Key of A SKA : Private Key of A H(M) : Hash of message M
23
Thankyou
Sumeet Bajaj sbajaj@cs.stonybrook.edu