Presentation is loading. Please wait.

Presentation is loading. Please wait.

Patterns for Secure Boot and Secure Storage in Computer Systems By: Hans L¨ohr, Ahmad-Reza Sadeghi, Marcel Winandy Horst G¨ortz Institute for IT Security,

Published byMorgan Phillips Modified over 8 years ago

Similar presentations

Presentation on theme: "Patterns for Secure Boot and Secure Storage in Computer Systems By: Hans L¨ohr, Ahmad-Reza Sadeghi, Marcel Winandy Horst G¨ortz Institute for IT Security,"— Presentation transcript:

1 Patterns for Secure Boot and Secure Storage in Computer Systems By: Hans L¨ohr, Ahmad-Reza Sadeghi, Marcel Winandy Horst G¨ortz Institute for IT Security, Ruhr-University Bochum, Germany

2 Introduction Trusted Computing Trusted Computing also Includes: System state integrity and the secure link In this paper, security patterns was introduced for secure boot and for secure storage. Secure boot is at the heart. It ensures that the integrity of software is verified before accessing stored data.

3 Introduction (Contd..) We present the patterns underlying two fundamental TC concepts: Secure boot and Secure storage. Secure boot :software that violates the integrity properties cannot be loaded. A variant of this pattern, termed Authenticated boot. Secure storage is a crucial application-level requirement in many scenarios.

4 SECURE BOOT PATTERN Intent: How to ensure that violations of integrity properties of the software stack. Example: How can the user be sure that the system software is in the intended operational state? Context: On conventional platforms, software can be manipulated or exchanged.

5 SECURE BOOT PATTERN Problem: Before applications can be used on a computer system, the system has to be bootstrapped. The bootloader loads the operating system kernel, and the operating system kernel loads system services, device drivers, and other applications. At any stage of the bootstrap process, software components could have been exchanged or modified by another user or by malicious software that has been executed before.

6 SECURE BOOT PATTERN The following forces have to be resolved: You want to ensure the integrity of the loaded software on the system. You want the computer system to always boot in a welldefined secure state. You want to allow modifications of the operating system or application binaries.

7 SECURE BOOT PATTERN Solution: Every stage is responsible for checking the integrity of the next stage. Integrity checking can be performed in different ways comparing hash values verifying digital signatures.

8 SECURE BOOT PATTERN Figure 1. Elements of the Secure Boot pattern.

9 SECURE BOOT PATTERN Known Uses: AEGIS The Cell Broadband Engine processor Consequences: Example Resolved: Related Patterns: Boot Loader Authenticator

10 SECURE STORAGE PATTERN Intent: Secure storage provides confidentiality and integrity for stored data, and additionally enforces access restrictions on entities that want to access data. Example: Consider the problem of storing passwords (e.g., for webservices) securely on a computer. Context : You need to provide storage that protects the confidentiality and integrity of stored data.

11 SECURE STORAGE PATTERN Problem: Cryptographic techniques exist to protect the confidentiality and integrity of data. The following forces have to be resolved: confidentiality and integrity ofdata secret cryptographic keys modifications of the operating system or application binaries

12 SECURE STORAGE PATTERN Solution: Root Key Root Key and Root Key Control are both protected by trusted hardware

13 SECURE STORAGE PATTERN Structure: Figure 2. Elements of the Secure Storage pattern.

14 SECURE STORAGE PATTERN Known Uses: The Cell processor features storage that can only be accessed when the processor is in a “secure state”. Example Resolved: Consequences: Only software where the integrity verification succeeded can access the protected data. Data can be stored on a system, such that it can be accessed only when the authorized operating system and software has been started.

15 SECURE STORAGE PATTERN Related Patterns: Secure Storage requires Secure Boot to protect the integrity verification data Secure Storage also requires Controlled Virtual Address Space Information Obscurity

16 Secure boot Secure storage Variety of patterns based on implementation requirements CONCLUSION

Download ppt "Patterns for Secure Boot and Secure Storage in Computer Systems By: Hans L¨ohr, Ahmad-Reza Sadeghi, Marcel Winandy Horst G¨ortz Institute for IT Security,"

Similar presentations

Operating Systems Components of OS

Operating Systems Components of OS
Wei Lu 1, Kate Keahey 2, Tim Freeman 2, Frank Siebenlist 2 1 Indiana University, 2 Argonne National Lab

Wei Lu 1, Kate Keahey 2, Tim Freeman 2, Frank Siebenlist 2 1 Indiana University, 2 Argonne National Lab
Mobile Code Security Yurii Kuzmin. What is Mobile Code? Term used to describe general-purpose executables that run in remote locations. Web browsers come.

Mobile Code Security Yurii Kuzmin. What is Mobile Code? Term used to describe general-purpose executables that run in remote locations. Web browsers come.
Thomas S. Messerges, Ezzat A. Dabbish Motorola Labs Shin Seung Uk.

Thomas S. Messerges, Ezzat A. Dabbish Motorola Labs Shin Seung Uk.
Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.

Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.
Ensuring Operating System Kernel Integrity with OSck By Owen S. Hofmann Alan M. Dunn Sangman Kim Indrajit Roy Emmett Witchel Kent State University College.

Ensuring Operating System Kernel Integrity with OSck By Owen S. Hofmann Alan M. Dunn Sangman Kim Indrajit Roy Emmett Witchel Kent State University College.
Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, 2010. ICWCSC 2010. International.

Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, ICWCSC International.
Mobile Code Security Aviel D. Rubin, Daniel E. Geer, Jr. MOBILE CODE SECURITY, IEEE Internet Computing, 1998 Minkyu Lee 2007. 04. 23.

Mobile Code Security Aviel D. Rubin, Daniel E. Geer, Jr. MOBILE CODE SECURITY, IEEE Internet Computing, 1998 Minkyu Lee
Chapter 6 Security Kernels.

Chapter 6 Security Kernels.
Software Certification and Attestation Rajat Moona Director General, C-DAC.

Software Certification and Attestation Rajat Moona Director General, C-DAC.
Chapter 1 – Introduction

Chapter 1 – Introduction
Trusted Disk Loading in the Emulab Network Testbed Cody Cutler, Mike Hibler, Eric Eide, Rob Ricci 1.

Trusted Disk Loading in the Emulab Network Testbed Cody Cutler, Mike Hibler, Eric Eide, Rob Ricci 1.
Edward Tsai – CS 239 – Spring 2003 Strong Security for Active Networks CS 239 – Network Security Edward Tsai Tuesday, May 13, 2003.

Edward Tsai – CS 239 – Spring 2003 Strong Security for Active Networks CS 239 – Network Security Edward Tsai Tuesday, May 13, 2003.
Chapter 1 Introduction. Chapter Overview Overview of Operating Systems Secure Operating Systems Basic Concepts in Information Security Design of a Secure.

Chapter 1 Introduction. Chapter Overview Overview of Operating Systems Secure Operating Systems Basic Concepts in Information Security Design of a Secure.
Copyright © 1995-2006 Clifford Neuman - UNIVERSITY OF SOUTHERN CALIFORNIA - INFORMATION SCIENCES INSTITUTE USC CSci599 Trusted Computing Lecture Three.

Copyright © Clifford Neuman - UNIVERSITY OF SOUTHERN CALIFORNIA - INFORMATION SCIENCES INSTITUTE USC CSci599 Trusted Computing Lecture Three.
Figure 1.1 Interaction between applications and the operating system.

Figure 1.1 Interaction between applications and the operating system.
Applied Cryptography for Network Security

Applied Cryptography for Network Security
Cryptography and Network Security Chapter 1. Chapter 1 – Introduction The art of war teaches us to rely not on the likelihood of the enemy's not coming,

Cryptography and Network Security Chapter 1. Chapter 1 – Introduction The art of war teaches us to rely not on the likelihood of the enemy's not coming,
Securing Information Transfer in Distributed Computing Environments AbdulRahman A. Namankani.

Securing Information Transfer in Distributed Computing Environments AbdulRahman A. Namankani.
Cryptography and Network Security Chapter 1 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Chapter 1 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Similar presentations

Ads by Google