Platform Configuration Registers

Arthur, Will; Challener, David; Goldman, Kenneth

doi:10.1007/978-1-4302-6584-9_12

Cited by 7 publications

(6 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…As previously mentioned, the methodology to secure the information contained in the MN involves periodically accessing PCRs in order to monitor the system's integrity. With this purpose, the MN keeps track of potential hardware changes taking place in the PCRs 0 to 7, as these ones can reveal any hardware configuration in the system [20].…”

Section: Proposed Methods To Secure Datamentioning

confidence: 99%

A Trusted Platform Module-based, Pre-emptive and Dynamic Asset Discovery Tool

Díaz-Honrubia

Herranz

Santamaría

et al. 2022

Journal of Information Security and Applications

View full text Add to dashboard Cite

Section: Proposed Methods To Secure Datamentioning

confidence: 99%

A Trusted Platform Module-based, Pre-emptive and Dynamic Asset Discovery Tool

Díaz-Honrubia

Herranz

Santamaría

et al. 2022

Journal of Information Security and Applications

View full text Add to dashboard Cite

“…• Join. Agent establishes a connection with GM through (σ, K), and then T A sends the system environment hashs (similar to platform configuration register (PCR) [23]) signed by K to GM . GM verifies the integrity and issues group membership certificates for Agent and T A.…”

Section: B Certificate Migration Protocol Designmentioning

confidence: 99%

MA-TEECM: Mutual Anonymous Authentication-Based Credential Migration Technology for Mobile Trusted Execution Environments

Wang

Yan

2023

IEEE Access

View full text Add to dashboard Cite

ARM TrustZone is the most widely used mobile trusted execution environment (TEE) technology today. Its hardware-enabled isolated execution environment provides reliable assurance of secure storage of credentials in mobile devices. However, the research on managing credentials stored in the TEE throughout the lifecycle of mobile devices has received little attention in recent years, and the credentials in TEE generally face usability problems caused by the mobile device lifecycle events. Aiming at the risk of information disclosure caused by the third-party service providers in the traditional credential migration scheme, this paper presents a mutual anonymous authentication-based credential migration framework for mobile trusted execution environments. First, we propose a peer-to-peer credential migration model between mobile terminals based on TrustZone and SGX, which solves the single point of failure caused by attacks on trusted third parties that act as credential transfer stations and managers in traditional solutions; Second, we propose an identity authentication protocol between TEEs based on mutual anonymous authentication, and a detailed authentication process is designed based on the universal mobile TEE model; Third, we build a formal verification model using High-Level Protocol Specification Language (HLPSL). Finally, the formal and informal security analysis indicate that the improved scheme meets the expected security requirements and is secure against several known attacks.

show abstract

“…2 shows the architecture of a TPM2.0 device [45], where the different components are interconnected by a bus, which also connects to the I/O interface. In addition to the aforementioned TRNG and the nonvolatile memory, where the Platform Configuration Registers (PCR) [48] are located, there are other important modules such as the symmetric and asymmetric key engines and the key generation engine. Typically, TPMs are used in computing systems supporting a BIOS or a similar firmware in charge to boot the device for adding a security layer below the software.…”

Section: ) Trusted Platform Modulesmentioning

confidence: 99%

“…In this sense, the TPM provides a root of trust. In this scheme, PCRs are records containing a concatenation of hashes [48] which are the base of the different protection mechanisms performed by the TPM. As an example, during the secure boot process provided by modern BIOSes, the startup firmware checks different parameters of the system as the peripherals attached, the status of the memory, and others.…”

Section: ) Trusted Platform Modulesmentioning

confidence: 99%

Integration of Hardware Security Modules and Permissioned Blockchain in Industrial IoT Networks

et al. 2022

View full text Add to dashboard Cite

Hardware Security Modules (HSM) serve as a hardware based root of trust that offers physical protection while adding a new security layer in the system architecture. When combined with decentralized access technologies as Blockchain, HSM offers robustness and complete reliability enabling secured end-to-end mechanisms for authenticity, authorization and integrity. This work proposes an efficient integration of HSM and Blockchain technologies focusing on, mainly, public-key cryptography algorithms and standards, that result crucial in order to achieve a successful combination of the mentioned technologies to improve the overall security in Industrial IoT systems. To prove the suitability of the proposal and the interaction of an IoT node and a Blockchain network using HSM a proof of concept is developed. Results of time performance analysis of the prototype reveal how promising the combination of HSMs in Blockchain environments is.

show abstract

Platform Configuration Registers

Cited by 7 publications

References 0 publications

A Trusted Platform Module-based, Pre-emptive and Dynamic Asset Discovery Tool

A Trusted Platform Module-based, Pre-emptive and Dynamic Asset Discovery Tool

MA-TEECM: Mutual Anonymous Authentication-Based Credential Migration Technology for Mobile Trusted Execution Environments

Integration of Hardware Security Modules and Permissioned Blockchain in Industrial IoT Networks

Contact Info

Product

Resources

About