A Practical Guide to TPM 2.0

Arthur, Will; Challener, David; Goldman, Kenneth J.

doi:10.1007/978-1-4302-6584-9

Cited by 98 publications

(15 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…As earlier works have shown [51], FPGAs can be used to implement all six elements required for a TPM [43]. These are as follows: Securely report boot environment, secure storage of data, Secure identification of the user and the system, support for standard security system, support for multiple users, and inexpensive production.…”

Section: Trusted Computing Overviewmentioning

confidence: 99%

A Survey of Trusted Computing Solutions Using FPGAs

2023

View full text Add to dashboard Cite

Ensuring the security and privacy of computation and data management in the cloud and edge is an ever-important requirement. There are several working solutions today for trusted computing with general purpose processors, for instance, Intel SGX and ARM TrustZone. However, with the widespread commercial adoption of specialized hardware accelerators in the cloud and at the edge, most importantly FPGAs, two questions emerge: 1) How secure are they against threats? and 2) How could FPGAs be utilized for more efficient trusted computing? In this survey, we investigate these two questions precisely. Even though there have been numerous surveys in the past on the security of FPGAs, we believe it is timely to study the space of related work again, given the large number of data-centric applications aimed at targeting trusted execution environments that have recently appeared. Therefore, in addition to presenting an overview of state of the art, we also highlight some opportunities for FPGAs in the context of providing efficient trusted computation.

show abstract

Section: Trusted Computing Overviewmentioning

confidence: 99%

A Survey of Trusted Computing Solutions Using FPGAs

2023

View full text Add to dashboard Cite

show abstract

“…In the secure boot process, computed PCR values are compared with reference values at different times points for verification. Hash functions are one-way functions used for integrity checking [25]. PCR registers commute the cumulative hash, with any bit flip in the configuration will result in an incorrect response.…”

Section: Trusted Platform Modulesmentioning

confidence: 99%

Secure Boot for Reconfigurable Architectures

2020

View full text Add to dashboard Cite

Reconfigurable computing is becoming ubiquitous in the form of consumer-based Internet of Things (IoT) devices. Reconfigurable computing architectures have found their place in safety-critical infrastructures such as the automotive industry. As the target architecture evolves, it also needs to be updated remotely on the target platform. This process is susceptible to remote hijacking, where the attacker can maliciously update the reconfigurable hardware target with tainted hardware configuration. This paper proposes an architecture of establishing Root of Trust at the hardware level using cryptographic co-processors and Trusted Platform Modules (TPMs) and enable over the air updates. The proposed framework implements a secure boot protocol on Xilinx based FPGAs. The project demonstrates the configuration of the bitstream, boot process integration with TPM and secure over-the-air updates for the hardware reconfiguration.

show abstract

“…In the secure boot process, computed PCR values are compared with reference values at different times points for verification. Hash functions are one-way functions that are used for the integrity checking [24]. PCR registers commute the cumulative hash, with any bit flip in the configuration will result in a n incorrect response.…”

Section: Pcrn = Pcrn || Sha256(x) (1)mentioning

confidence: 99%

Secure Boot for Reconfigurable Architectures

Siddiqui¹,

Gui²,

Saqib³

2020

Preprint

View full text Add to dashboard Cite

Reconfigurable computing is becoming ubiquitous in the form of consumer-based Internet of Things (IoT) devices. Reconfigurable computing architectures have found their place in safety-critical infrastructures such as the automotive industry. As the target architecture evolves, it also needs to be updated remotely on the target platform. This process is susceptible to remote hijacking, where the attacker can maliciously update the reconfigurable hardware target with tainted hardware configuration. This paper proposes an architecture of establishing Root of Trust at the hardware level using cryptographic co-processors and Trusted Platform Modules (TPMs) and enable over the air updates. The proposed framework implements secure boot protocol on Xilinx based FPGAs. The project demonstrates the configuration of the bitstream, boot process integration with TPM and secure over-the-air updates for the hardware reconfiguration.

show abstract

A Practical Guide to TPM 2.0

Cited by 98 publications

References 0 publications

A Survey of Trusted Computing Solutions Using FPGAs

A Survey of Trusted Computing Solutions Using FPGAs

Secure Boot for Reconfigurable Architectures

Secure Boot for Reconfigurable Architectures

Contact Info

Product

Resources

About