Presentation is loading. Please wait.

Presentation is loading. Please wait.

TCPA TCPA TCPA T rusted C omputing P latform A lliance Saurabh Phansalkar.

Published byLauren Oswald Modified over 9 years ago

Similar presentations

Presentation on theme: "TCPA TCPA TCPA T rusted C omputing P latform A lliance Saurabh Phansalkar."— Presentation transcript:

1 TCPA TCPA TCPA T rusted C omputing P latform A lliance Saurabh Phansalkar

2 Key Topics Need Implementation Predecessor Possible Applications Palladium / DRM Concerns/ Misconceptions Additional Information Sources

3 Need for TCPA Internet Threat Trends Network attacks – better encryption techniques Server attacks – firewalls, intrusion detection Attacks through client PCs Effects E-business scope limited by lack of security/ trust Source: IBM Watson Research - Global Security Analysis Lab http://www.research.ibm.com/gsal/tcpa/

4 Need for TCPA Solution Client based security system Combination of HW & SW

5 TCP - Alliance Initiated by Intel Formed by Intel, IBM, HP, Compaq, Microsoft Nearly 200 member companies Industry work group focused on enhancing trust by increasing security Source: http://www.trustedcomputing.org

6 Mission Through the collaboration of HW, SW, communications, and technology vendors, drive and implement TCPA specifications for an enhanced HW and OS based trusted computing platform that implements trust into client, server, networking, and communication platforms Source: http://www.trustedcomputing.org

7 Implementation “Fritz” Chip Smart card chip Mounted on LPC bus using I/O mapped registers Generates RSA public/private key pair Supported by client security software Source: http://www.trustedcomputing.org http://www.ibm.com

8 Implementation Functional groups within “Fritz” chip Public key functions Generation of a RSA public/ private key pair, verification of signatures, encryption & decryption Trusted boot functions Stores OS configuration information throughout the boot sequence in Platform Configuration Registers (PCR) Initialization & management functions On & off control of the fritz chip, reset chip Source: http://www.trustedcomputing.org http://www.research.ibm.com/gsal/tcpa/

9 Predecessor Embedded Security System (ESS) Offered by IBM for ThinkPad and NetVista Smart card chip placed on mother board Supported by client based software Source: http://www.ibm.com

10 Applications Business 2 Environment Issues with authentication systems such as passwds, viruses/ trojans impose limitations on trust TCPA with biometrics/ smart cards provides 2- factor authentication “Integrity Metrics” used to determine trustworthiness Source: http://www.trustedcomputing.org http://www.research.ibm.com/gsal/tcpa/

11 Palladium Project at Microsoft to add trust in Windows Embedded in future Windows-OS Supported by SCP chip SCP would support Linux Unclear about compatibility with TCPA chip “Trusted Operating Root Architecture” will stop “Break Once Run Anywhere” (TORA-BORA) Source: http://www.cl.cam.ac.uk/~rja14/tcpa-faq.html http://www.research.ibm.com/gsal/tcpa/

12 Digital Rights Management- DRM Copy protection of music/ video data Need palladium platform What will happen for a Disney VCD?? Source: http://www.cl.cam.ac.uk/~rja14/tcpa-faq.html http://www.research.ibm.com/gsal/tcpa/ Unique Integrity Metrics, CD Identification Disney Server

13 Concerns & Misconceptions Allows vendor to set rules Piracy threatened Allows excess control over PCs TCPA/ Palladium/ DRM are not the same TCPA is a subset of palladium DRM is one possible application of combined HW & SW TCPA does not control execution but it provides protection of private keys and encrypted data

14 Additional Information http://www.trustedcomputing.org http://www.research.ibm.com/gsal/tcpa http://www.cl.cam.ac.uk/~rja14/tcpa-faq.html Founder company’s website http://antitcpa.alsherok.net http://www.cs.umd.edu/~waa/tcpa

Download ppt "TCPA TCPA TCPA T rusted C omputing P latform A lliance Saurabh Phansalkar."

Similar presentations

Software Bundle ViPNet Secure Remote Access Arrangement using ViPNet Mobile © Infotecs.

Software Bundle ViPNet Secure Remote Access Arrangement using ViPNet Mobile © Infotecs.
Thomas S. Messerges, Ezzat A. Dabbish Motorola Labs Shin Seung Uk.

Thomas S. Messerges, Ezzat A. Dabbish Motorola Labs Shin Seung Uk.
Chapter 17: WEB COMPONENTS

Chapter 17: WEB COMPONENTS
Vpn-info.com.

Vpn-info.com.
1 Implementing an Untrusted Operating System on Trusted Hardware David Lie Chandramohan A. Thekkath Mark Horowitz University of Toronto, Microsoft Research,

1 Implementing an Untrusted Operating System on Trusted Hardware David Lie Chandramohan A. Thekkath Mark Horowitz University of Toronto, Microsoft Research,
The Italian Academic Community’s Electronic Voting System Pierluigi Bonetti Lisbon, May 2000.

The Italian Academic Community’s Electronic Voting System Pierluigi Bonetti Lisbon, May 2000.
Ragib Hasan Johns Hopkins University en.600.412 Spring 2011 Lecture 3 02/14/2010 Security and Privacy in Cloud Computing.

Ragib Hasan Johns Hopkins University en Spring 2011 Lecture 3 02/14/2010 Security and Privacy in Cloud Computing.
Hardware Security: Trusted Platform Module Amir Houmansadr CS660: Advanced Information Assurance Spring 2015 Content may be borrowed from other resources.

Hardware Security: Trusted Platform Module Amir Houmansadr CS660: Advanced Information Assurance Spring 2015 Content may be borrowed from other resources.
16.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.

16.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.
Using Cryptographic ICs For Security and Product Management Misconceptions about security Network and system security Key Management The Business of Security.

Using Cryptographic ICs For Security and Product Management Misconceptions about security Network and system security Key Management The Business of Security.
Ragib Hasan Johns Hopkins University en.600.412 Spring 2010 Lecture 5 03/08/2010 Security and Privacy in Cloud Computing.

Ragib Hasan Johns Hopkins University en Spring 2010 Lecture 5 03/08/2010 Security and Privacy in Cloud Computing.
Trusted Computing Initiative Beyond trustworthy. Trusted Computing  Five Key Concepts >Endorsement Key >Secure Input and Output >Memory Curtain / Protected.

Trusted Computing Initiative Beyond trustworthy. Trusted Computing  Five Key Concepts >Endorsement Key >Secure Input and Output >Memory Curtain / Protected.
FIT3105 Smart card based authentication and identity management Lecture 4.

FIT3105 Smart card based authentication and identity management Lecture 4.
SEC316: BitLocker™ Drive Encryption

SEC316: BitLocker™ Drive Encryption
CS 550 Amoeba-A Distributed Operation System by Saie M Mulay.

CS 550 Amoeba-A Distributed Operation System by Saie M Mulay.
Business Data Communications, Fourth Edition Chapter 10: Network Security.

Business Data Communications, Fourth Edition Chapter 10: Network Security.
Trusted Computing Platform Alliance – Introduction and Technical Overview – Joe Pato HP Labs MIT 6.805/6.857 17 October 2002.

Trusted Computing Platform Alliance – Introduction and Technical Overview – Joe Pato HP Labs MIT 6.805/ October 2002.
FIT5037 Advanced Network Security --- Modern Computing and Security --- Lecture 1.

FIT5037 Advanced Network Security --- Modern Computing and Security --- Lecture 1.
Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Copyright © 2006 by The McGraw-Hill Companies,

Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Copyright © 2006 by The McGraw-Hill Companies,
Network Topology. Cisco 2921 Integrated Services Router Security Embedded hardware-accelerated VPN encryption Secure collaborative communications with.

Network Topology. Cisco 2921 Integrated Services Router Security Embedded hardware-accelerated VPN encryption Secure collaborative communications with.

Similar presentations

Ads by Google