Presentation is loading. Please wait.

Presentation is loading. Please wait.

Securing Applications With Firmware (Going Beyond TCPA Platform Security) Dr. Robert W. Baldwin Chief Scientist.

Published byBarbra Hubbard Modified over 8 years ago

Similar presentations

Presentation on theme: "Securing Applications With Firmware (Going Beyond TCPA Platform Security) Dr. Robert W. Baldwin Chief Scientist."— Presentation transcript:

1 Securing Applications With Firmware (Going Beyond TCPA Platform Security) Dr. Robert W. Baldwin Bob_Baldwin@phoenix.com Chief Scientist

2 2 Outline  Who is Phoenix Technologies?  What is Phoenix doing in Security?  Current & Future Partners

3 3 Phoenix Dominates PC BIOS  BIOS: Initialize & Manage PC Motherboard & Devices  Phoenix is 21 Years Old  80% PC Market Share  > 100 Million in 2001  Expanding to Set Top Box Internet Appliance Wireless Handheld  Prior Success With Power Management Plug n Play USB 100 Million PCs in 2001

4 4 Phoenix Partners & Customers

5 5 Phoenix FirstWare Opportunity  Motherboard Includes Protected Execution Environment  Past: Power Management USB, Plug n Play  Now: Firmware Smart Card for Each Application Application Integrity & Access Control RSA, AES, SHA1-HMAC World Wide Trust Infrastructure (PKI Initializes AES Smart Cards) Application Win OS StrongROM

6 6 Phoenix FirstWare Opportunity  Bind Data (Cryptographic Seal & Unseal): to Specific Application on Specific Device App-Device Pair Registered with Enterprise or Merchant  Checks Signature on In-Memory Application Code Viruses, Tampering, Reverse Engineering App Data Application

7 7 ProcessorChipsetI/O BIOSHidden NVRAMStrongROM H/W Motherboard ROM StrongROM RAM Buffer SMRAM Operating System Driver Runtime SMI FirstWare Architecture Root Key Device Key Application 2 Application Container 2 Application 1 Application Container 1 Pre-boot

8 8 FirstWare Product Areas  Check the Virus Checker & OS Loader  One-Time Password Authentication  Convenient Two-Factor Challenge-Response VPN Client, RAS Dial-Up, SSL Web Access  Protect RSA Private Key & Certificate VPN Client Certificate, E-Mail, Purchasing Card  Software Licensing & Content DRM  Device Asset Control & Tracking

9 9 Phoenix cryptographic engine + security keys Phoenix StrongROM on motherboard StrongROM secured computer FirstWare Deployment StrongClient secured computer New PC, Handheld, Set Top Legacy & Non-Phoenix Devices Application Includes StrongClient WDM

10 10 Working With Security Partners  Chips Vendors  Motherboard & PC Makers  OS Vendors  Wireless & Handheld  Security App Vendors  Financial App Vendors  DRM Vendors  Trust Infrastructure Providers Phoenix FirstAuthority Device Security Server & SDK Phoenix FirstAuthority Server Family Device Authority Service Providers Phoenix FirstWare StrongROM & StrongCLIENT Device Manufacturers & System OEMs ISVs & IT Developers

Download ppt "Securing Applications With Firmware (Going Beyond TCPA Platform Security) Dr. Robert W. Baldwin Chief Scientist."

Similar presentations

Confidential 1 Phoenix Security Architecture and DevID July 2005 Karen Zelenko Phoenix Technologies.

Confidential 1 Phoenix Security Architecture and DevID July 2005 Karen Zelenko Phoenix Technologies.
Innovation Towards a next generation secure internet Private Application Ecosystems Sanjay Deshpande CEO and Chief Innovation Officer Center.

Innovation Towards a next generation secure internet Private Application Ecosystems Sanjay Deshpande CEO and Chief Innovation Officer Center.
Thomas S. Messerges, Ezzat A. Dabbish Motorola Labs Shin Seung Uk.

Thomas S. Messerges, Ezzat A. Dabbish Motorola Labs Shin Seung Uk.
© 2011 All rights reserved to Ceedo. Ceedo - Flexible Computing Certificate-Based Authentication (CBA - 2FA) The organization MUST be able to positively.

© 2011 All rights reserved to Ceedo. Ceedo - Flexible Computing Certificate-Based Authentication (CBA - 2FA) The organization MUST be able to positively.
© 2012 All rights reserved to Ceedo. Flexible Desktops. Dynamic Workplace. Ceedo for Citrix Optimal User Experience & Maximum IT Control Ceedo for Call.

© 2012 All rights reserved to Ceedo. Flexible Desktops. Dynamic Workplace. Ceedo for Citrix Optimal User Experience & Maximum IT Control Ceedo for Call.
Vpn-info.com.

Vpn-info.com.
Identity and Access IDPrime MD 8840 and IDCore 8030 MicroSD cards

Identity and Access IDPrime MD 8840 and IDCore 8030 MicroSD cards
A l a d d i n. c o m eToken NG-OTP Combined PKI - OTP Authentication Solution November, 2008.

A l a d d i n. c o m eToken NG-OTP Combined PKI - OTP Authentication Solution November, 2008.
1 GP Confidential ©2013 1 GlobalPlatform’s Value Proposition for Mobile Point of Sale (mPOS)

1 GP Confidential © GlobalPlatform’s Value Proposition for Mobile Point of Sale (mPOS)
Musenki Enabling “hotspot” wireless Internet connectivity through technology and services.

Musenki Enabling “hotspot” wireless Internet connectivity through technology and services.
TCPA TCPA TCPA T rusted C omputing P latform A lliance Saurabh Phansalkar.

TCPA TCPA TCPA T rusted C omputing P latform A lliance Saurabh Phansalkar.
Persistent Protection Using E-DRM Technology Jason Fasoo 06/18/2008.

Persistent Protection Using E-DRM Technology Jason Fasoo 06/18/2008.
CLXMGCS.ppt Why Smart Cards System Overview Card Architecture Why CardLogix Smart Cards Overview FY 2001.

CLXMGCS.ppt Why Smart Cards System Overview Card Architecture Why CardLogix Smart Cards Overview FY 2001.
eToken PKI Client Overview

eToken PKI Client Overview
Mobile Credentials Ennio J. Carboni Product Manager, Keon PKI

Mobile Credentials Ennio J. Carboni Product Manager, Keon PKI
Authentication choices! Vincent van Kooten: Business Sales Manager Benelux Distributed by -

Authentication choices! Vincent van Kooten: Business Sales Manager Benelux Distributed by -
Using Cryptographic ICs For Security and Product Management Misconceptions about security Network and system security Key Management The Business of Security.

Using Cryptographic ICs For Security and Product Management Misconceptions about security Network and system security Key Management The Business of Security.
Mobile Mobile OS and Application Team: Kwok Tak Chi Law Tsz Hin So Ting Wai.

Mobile Mobile OS and Application Team: Kwok Tak Chi Law Tsz Hin So Ting Wai.
Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.

Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.
Cyber Security and Key Management Models Smart Grid Networks The Network System Key Management and Utilization Why Hardware Security Christopher Gorog,

Cyber Security and Key Management Models Smart Grid Networks The Network System Key Management and Utilization Why Hardware Security Christopher Gorog,

Similar presentations

Ads by Google