Presentation is loading. Please wait.

Presentation is loading. Please wait.

Trusted computing: implementing virtual identity Dave Birch. Director, Consult Hyperion. Introduction  Trusted computing  TCPA & Palladium.

Published byThomas Mayden Modified over 9 years ago

Similar presentations

Presentation on theme: "Trusted computing: implementing virtual identity Dave Birch. Director, Consult Hyperion. Introduction  Trusted computing  TCPA & Palladium."— Presentation transcript:

1 trusted computing: implementing virtual identity Dave Birch. Director, Consult Hyperion. dave@chyp.com Introduction  Trusted computing  TCPA & Palladium  Real requirements?  Architectures  Smart cards?  Trust issues  Structures  Business Models

2 trusted computing: implementing virtual identity Why Now? TCPA & Palladium  Renewed interest in trusted computing  Linked with general security trends  Marketplace  Hardware manufacturers  Software producers  Service providers  Infrastructure builders  Big Brother?  Safe for kids, or  Mind control lasers? © Steve Jackson Games.

3 trusted computing: implementing virtual identity Trusted Computing: Nothing New  Defence background  Hardware focus  Financial services  Proprietary, expensive  Mass market  GSM as a case study

4 trusted computing: implementing virtual identity Trusted Computing: Hard Options  Software limitations obvious  Internet providing new drivers  Viruses, hacking etc  Real e–business, e–government limited  “Tamper–resistance” critical  And must be the core  Realistic with falling hardware costs

5 trusted computing: implementing virtual identity Trusted Computing: The Key Issue  The “root” of trust  Keys and certificates  A trusted environment  “Standard” use of keys and certificates  Control  Who’s in charge?

6 trusted computing: implementing virtual identity Trust Architectures: General Solutions  Trusted kernel with tamper–resistant hardware  Platform–dependent capabilities  Trusted platform providing services 1. CPU2. SCP 3. Motherboard RAM etc Devices etc 4. eg, Keyboard 5. eg, Screen

7 trusted computing: implementing virtual identity Trust Architectures: How do they Help?  The Internet example  Secure e–mail, secure web browsing  Anti–virus countermeasures  Reduce loss/theft impact  Link to higher–level security services  What else could they do?  The dark side!

8 trusted computing: implementing virtual identity Trust Architectures: Early Experiences  Central and wholesale banking  PC–based tamper–resistance  Management, insurance, legal  Telecomms & media  Smart card–based tamper–resistance  Special–purpose devices (eg, GSM, Pay TV)  Public sector  High assurance levels for national ID  Risk analysis

9 trusted computing: implementing virtual identity Trust Issues: Structures & Mechanisms  Focus on mass market  Maximise use of existing infrastructure  PCs, the Internet etc  Add tamper–resistance  Why not use a smart card?  Implement mechanisms for use  Use SSLv3, S/MIME etc

10 trusted computing: implementing virtual identity Trust Issues: Business Models  Separate tamper–resistance from device  The GSM SIM experience  Separate trust from tamper–resistance  Allow users to manage their own keys and certificates  Make trust competitive  And a standard commercial offering  Co–Opt existing infrastructure  Everything from PCs to EMV cards, Bluetooth phones to set–top boxes

11 trusted computing: implementing virtual identity Trusted Computing: Conclusions  An idea whose time has come?  TCPA, Palladium and others to follow  Opt for flexible architecture  Focus on real needs first  Allow the marketplace to evolve it  Start working on new business models  Multi–application smart cards a good place to begin experiments and pilots

12 trusted computing: implementing virtual identity Mail info@chyp.cominfo@chyp.com Web www.chyp.com Digital Money Forum www.digitalmoneyforum.com Digital Identity Forum www.digitalidforum.com For Further Information

Download ppt "Trusted computing: implementing virtual identity Dave Birch. Director, Consult Hyperion. Introduction  Trusted computing  TCPA & Palladium."

Similar presentations

3SKey 3SKey.

3SKey 3SKey.
Professor Michael J. Losacco CIS 1110 – Using Computers Introduction to Computers Chapter 1.

Professor Michael J. Losacco CIS 1110 – Using Computers Introduction to Computers Chapter 1.
TCPA TCPA TCPA T rusted C omputing P latform A lliance Saurabh Phansalkar.

TCPA TCPA TCPA T rusted C omputing P latform A lliance Saurabh Phansalkar.
Gemplus and OSGI Benjamin Maury 10.23.03. Gemplus Introduction  World Leader for Smart Card Solutions  Smart Solutions in Telecommunications  Beyond.

Gemplus and OSGI Benjamin Maury Gemplus Introduction  World Leader for Smart Card Solutions  Smart Solutions in Telecommunications  Beyond.
Mobile Payments Index: Introduction Technologies Payment methods

Mobile Payments Index: Introduction Technologies Payment methods
Robin Estabrooks Computer Science 1631, Winter 2011.

Robin Estabrooks Computer Science 1631, Winter 2011.
Creating a Secured and Trusted Information Sphere in Different Markets Giuseppe Contino.

Creating a Secured and Trusted Information Sphere in Different Markets Giuseppe Contino.
E-commerce E-commerce, or electronic commerce, refers to systems that support electronically executed business transactions. In this section: E-commerce.

E-commerce E-commerce, or electronic commerce, refers to systems that support electronically executed business transactions. In this section: E-commerce.
Module 2: Information Technology Infrastructure

Module 2: Information Technology Infrastructure
Presentation Speakers: Billy Herndon Angel Dronsfield May 2001 duke.

Presentation Speakers: Billy Herndon Angel Dronsfield May 2001 duke.
Public Key Infrastructure Ammar Hasayen 2013. ….

Public Key Infrastructure Ammar Hasayen ….
Symbian os with smart phones Guided by: Hetal A Josiyara

Symbian os with smart phones Guided by: Hetal A Josiyara
Copyright ©: 1995-2011 SAMSUNG & Samsung Hope for Youth. All rights reserved Tutorials The internet: Safe online shopping Suitable for: Improver.

Copyright ©: SAMSUNG & Samsung Hope for Youth. All rights reserved Tutorials The internet: Safe online shopping Suitable for: Improver.
Moving USB …beyond the desktop TM at Wireless Coexistence Conference, San Jose, CA powered by ExtremeUSB.

Moving USB …beyond the desktop TM at Wireless Coexistence Conference, San Jose, CA powered by ExtremeUSB.
Ecommerce … or electronic commerce refers to systems that support electronically executed business transactions. B2C B2B C2C In this section: Ecommerce.

Ecommerce … or electronic commerce refers to systems that support electronically executed business transactions. B2C B2B C2C In this section: Ecommerce.
Banking Clouds V International Youth Banking Forum.

Banking Clouds V International Youth Banking Forum.
Moving USB …beyond the desktop TM at 2007, Nice France powered by ExtremeUSB.

Moving USB …beyond the desktop TM at 2007, Nice France powered by ExtremeUSB.
Non-immigration Applications for Incorporation into the Smart ID Card Information Technology and Broadcasting Bureau 20 December 2001.

Non-immigration Applications for Incorporation into the Smart ID Card Information Technology and Broadcasting Bureau 20 December 2001.
GETTING WEB READY Introduction to Web Hosting. Table of Contents + Websites: The face of your business …………………………………………………………………………1 + Get your website.

GETTING WEB READY Introduction to Web Hosting. Table of Contents + Websites: The face of your business …………………………………………………………………………1 + Get your website.
European Electronic Identity Practices Country Update of Austria Peter F Brown Office of the CIO, Austrian Federal Chancellery Chair, CEN eGov Focus Group.

European Electronic Identity Practices Country Update of Austria Peter F Brown Office of the CIO, Austrian Federal Chancellery Chair, CEN eGov Focus Group.

Similar presentations

Ads by Google