KEMBAR78
trusted computing for security confe.ppt
Uploaded bynaghamallella
PPT, PDF62 views

trusted computing for security confe.ppt

Trusted Computing (TC) uses a Trusted Platform Module (TPM) hardware chip to enable secure computing technologies. The TPM provides hardware-based security features like memory curtaining, sealed storage, and remote attestation to verify the integrity and identity of software. TC aims to make computers trust software creators over users to prevent unauthorized access or software tampering. It is an open industry standard being adopted in operating systems and processors to enhance security for personal and enterprise computing.

Download to read offline
Trusted Computing BY: Sam Ranjbari Billy J. Garcia
What is it? Trusted Computing (TC) is an open standard for hardware enabled trusted computing and security technologies. This means a more secure PC that only trusts the software creators not the owner
Trusted Computing  TC was created by the non-for-profit organization Trusted Computing Group (TCG);  An alliance of Microsoft, Intel, IBM, HP, AMD and …  A list can be found at this link https://www.trustedcomputinggroup.org/a bout/members/
What does Trust mean?  Trust means that something does as it is intended to do  TCG defines trust as “an entity can be trusted if it always behaves in the expected manner for the intended purpose”.  For example, when you save or read something from your hard drive, you want the data to be written and read accurately like it is intended to be, but you have to trust it to write and read without errors.
Who do I trust? Me!  Today a computer trusts one of two entities in a user and hacker model.  The user is trusted and the hacker is not.
Continue  But when does a computer know that the user is not doing something harmful?  With TC the user and the hacker are both not trusted. This ensures that nothing is done that can compromise the security of the PC.
So How does TC work?  For TC to work you have to use the Trusted Computing Module (TPM) which is a hardware system where the core (root) of trust in the platform will reside.  TPM will be implemented using a security microchip that handles security with encryption.
Groups of secure hardware  They are memory curtaining, secure input and output, sealed storage, and remote attestation.  It is also important to mention the concept of the endorsement key.  The endorsement key is a 1,048 bit RSA private and public key that is created randomly on a microchip during the manufacturing of the chip. The private key is only used by the chip while the public key is used for attestation and for the encryption of sensitive data sent to the chip. 
endorsement key  The key is used to allow secure transactions by the TPM using a protocol created by TCG. This prevents a TPM emulator from starting a trusted entity. TPM is also designed to prevent extraction of the key from hardware analysis
…Groups of secure Hardware  Memory curtaining is hardware enforced memory isolation that will prevent software from being able to read or write to other software’s memory.  Today hackers can read memory and alter applications’ memory to do evil deeds that are not intended.
…Groups of secure Hardware  Secure input and output will prevent threats from key loggers or screen grabbers from intruders.  Using encrypted input and output will prevent the intruders from being able to see what the user types or what is on the users screen because the input from the keyboard to the software and the output from the software to the screen are encrypted.
…Groups of secure Hardware  Today hard drives are insecure by storing cryptographic keys on a hard drive that intruders can access.  User’s passwords, documents, and other information are also unprotected on today’s storage.
…Groups of secure Hardware  With sealed storage the keys are generated using the hardware and the software  For example, when you install a email client on a set of hardware a key is generated and used for the data that is saved and read from the email client.  If a virus is running on the PC it will not be able to read the email because the virus and the hardware combo generate a different key!
…Groups of secure Hardware  With remote attestation a certificate is generated in hardware of the software installed and running on a computer.  This allows software writers to check and ensure that their software is unmodified and has not been hacked.  Identity of the software is verified with a hash that will change if the software has been changed.  Since the hash is compared to a remote hash the intruder has no way of forging altered software.
Trusted Computing  Not only TC is used for PCs but it is also going to be used for more hardware such as set top boxes, mobile phones, servers, storage devices, networks and more. 
Trusted Computing  So when will we see TC being used?  For TC to work you have to have hardware with the TPM, and software to work with the TPM. Windows Vista is the next generation operating system by Microsoft that will make use of TC, although Microsoft likes to call it Trustworthiness.
Trusted Computing  So far both AMD and Intel are working on a new processor to use TPM.  Well, who would want to use TC?  So far the computer industry is supporting TC and the Army wants all of their computers by 2010 to use a secure model such as TC.
Use of Trusted Computing  Other software that uses TC are openTC, EMSCB, Forum for Open SW based TC, Enforcer, Next-Generation Secure Computing Base (NGSCB), TruoSerS – The open-source TCG Software Stack, and Trusted Java.
Conclusion  Trusted Computing is an industry standard created to protect a user from intruders and unsafe actions.  With Trusted Computing the PC will decide who should be trusted and what is safe and unsafe using the Trusted Platform Module.  By default no one is trusted except the hardware and the software publishers. Not even the PC users are trusted. TC was created for our benefits for sure…
Trusted-Platform-Module

More Related Content

PPT
Trusted Computing security _platform.ppt
bynaghamallella
 
PPT
Trusted _Computing _security mobile .ppt
bynaghamallella
 
PPT
Trusted Computing _plate form_ model.ppt
bynaghamallella
 
PDF
Introduction to Trusted Computing
byMaksim Djackov
 
PPT
Abbie Barbir Tcg Final
byAbbie Barbir
 
ODP
Portakal Teknoloji Otc Lyon Part 1
bybora.gungoren
 
PPT
Trusted computing introduction and technical overview
bySajid Marwat
 
PDF
Trusted Computing Base
byVasily Sartakov
 
Trusted Computing security _platform.ppt
bynaghamallella
 
Trusted _Computing _security mobile .ppt
bynaghamallella
 
Trusted Computing _plate form_ model.ppt
bynaghamallella
 
Introduction to Trusted Computing
byMaksim Djackov
 
Abbie Barbir Tcg Final
byAbbie Barbir
 
Portakal Teknoloji Otc Lyon Part 1
bybora.gungoren
 
Trusted computing introduction and technical overview
bySajid Marwat
 
Trusted Computing Base
byVasily Sartakov
 

Similar to trusted computing for security confe.ppt

PPT
Introduction of Trusted Network Connect (TNC)
byHoucheng Lee
 
PDF
Broken by design (Danny Fullerton)
byHackfest Communication
 
PPTX
Why TPM in Automotive?
byAlan Tatourian
 
PDF
Acpi and smi handlers some limits to trusted computing
byUltraUploader
 
PPT
lamacchia-palladium
byNed Hayes
 
PPT
TC and TPM.ppt
byyhaxpsos
 
PDF
Secure Trustworthy Enterprise
byDMIMarketing
 
PDF
Platform Embedded Security Technology Revealed 1st Edition Xiaoyu Ruan Auth
byiluylva
 
PDF
EMULATING TRUSTED PLATFORM MODULE 2.0 ON RASPBERRY PI 2
byijsptm
 
PDF
Emulating Trusted Platform Module 2.0 on Raspberry Pi 2
byClaraZara1
 
PDF
Track 5 session 2 - st dev con 2016 - security iot best practices
byST_World
 
PPTX
Reconfigurable trust forembeddedcomputingplatforms
byAbdullah Deeb
 
PPTX
Microsoft Palladium
bySuryakanta Rout
 
PDF
Trusted computing: an overview
byTJR Global
 
PPTX
Protecting Data with Short-Lived Encryption Keys and Hardware Root of Trust
byDan Griffin
 
PDF
The new era of mega trends securtity
byAhmed Sallam
 
PDF
Platform Embedded Security Technology Revealed 1st Edition Xiaoyu Ruan (Auth.)
byrezdjcggvq3827
 
PDF
Platform Embedded Security Technology Revealed 1st Edition Xiaoyu Ruan (Auth.)
byzuaniawaisan
 
PPTX
Review of Hardware based solutions for trusted cloud computing.pptx
byssusere142fe
 
PPTX
Trusted Platform Module (TPM)
byk33a
 
Introduction of Trusted Network Connect (TNC)
byHoucheng Lee
 
Broken by design (Danny Fullerton)
byHackfest Communication
 
Why TPM in Automotive?
byAlan Tatourian
 
Acpi and smi handlers some limits to trusted computing
byUltraUploader
 
lamacchia-palladium
byNed Hayes
 
TC and TPM.ppt
byyhaxpsos
 
Secure Trustworthy Enterprise
byDMIMarketing
 
Platform Embedded Security Technology Revealed 1st Edition Xiaoyu Ruan Auth
byiluylva
 
EMULATING TRUSTED PLATFORM MODULE 2.0 ON RASPBERRY PI 2
byijsptm
 
Emulating Trusted Platform Module 2.0 on Raspberry Pi 2
byClaraZara1
 
Track 5 session 2 - st dev con 2016 - security iot best practices
byST_World
 
Reconfigurable trust forembeddedcomputingplatforms
byAbdullah Deeb
 
Microsoft Palladium
bySuryakanta Rout
 
Trusted computing: an overview
byTJR Global
 
Protecting Data with Short-Lived Encryption Keys and Hardware Root of Trust
byDan Griffin
 
The new era of mega trends securtity
byAhmed Sallam
 
Platform Embedded Security Technology Revealed 1st Edition Xiaoyu Ruan (Auth.)
byrezdjcggvq3827
 
Platform Embedded Security Technology Revealed 1st Edition Xiaoyu Ruan (Auth.)
byzuaniawaisan
 
Review of Hardware based solutions for trusted cloud computing.pptx
byssusere142fe
 
Trusted Platform Module (TPM)
byk33a
 

More from naghamallella

PPT
OS-20210426203801 introduction to os.ppt
bynaghamallella
 
PPT
basic logic gate presentation date23.ppt
bynaghamallella
 
PPT
logic gate presentation for and or n.ppt
bynaghamallella
 
PPT
6_2019_04_09!08_59_48_PM logic gate_.ppt
bynaghamallella
 
PPT
bin packing 2 for real time scheduli.ppt
bynaghamallella
 
PPTX
bin packing2 and scheduling for mul.pptx
bynaghamallella
 
PPT
BOOTP computer science for multiproc.ppt
bynaghamallella
 
PPT
trusted computing platform alliancee.ppt
bynaghamallella
 
PPT
bin packing and scheduling multiproc.ppt
bynaghamallella
 
PPT
multiprocessor _system _presentation.ppt
bynaghamallella
 
PPT
image processing for jpeg presentati.ppt
bynaghamallella
 
PPT
introduction to jpeg for image proce.ppt
bynaghamallella
 
PPT
jpg image processing nagham salim_as.ppt
bynaghamallella
 
PPTX
lips _reading_nagham _salim compute.pptx
bynaghamallella
 
PPT
electronic mail security for authent.ppt
bynaghamallella
 
PPT
web _security_ for _confedindality s.ppt
bynaghamallella
 
PPT
lips _reading _in computer_ vision_n.ppt
bynaghamallella
 
PPT
thread_ multiprocessor_ scheduling_a.ppt
bynaghamallella
 
PPT
distributed real time system schedul.ppt
bynaghamallella
 
PPTX
avi _file _formate_ trasport _layer.pptx
bynaghamallella
 
OS-20210426203801 introduction to os.ppt
bynaghamallella
 
basic logic gate presentation date23.ppt
bynaghamallella
 
logic gate presentation for and or n.ppt
bynaghamallella
 
6_2019_04_09!08_59_48_PM logic gate_.ppt
bynaghamallella
 
bin packing 2 for real time scheduli.ppt
bynaghamallella
 
bin packing2 and scheduling for mul.pptx
bynaghamallella
 
BOOTP computer science for multiproc.ppt
bynaghamallella
 
trusted computing platform alliancee.ppt
bynaghamallella
 
bin packing and scheduling multiproc.ppt
bynaghamallella
 
multiprocessor _system _presentation.ppt
bynaghamallella
 
image processing for jpeg presentati.ppt
bynaghamallella
 
introduction to jpeg for image proce.ppt
bynaghamallella
 
jpg image processing nagham salim_as.ppt
bynaghamallella
 
lips _reading_nagham _salim compute.pptx
bynaghamallella
 
electronic mail security for authent.ppt
bynaghamallella
 
web _security_ for _confedindality s.ppt
bynaghamallella
 
lips _reading _in computer_ vision_n.ppt
bynaghamallella
 
thread_ multiprocessor_ scheduling_a.ppt
bynaghamallella
 
distributed real time system schedul.ppt
bynaghamallella
 
avi _file _formate_ trasport _layer.pptx
bynaghamallella
 

Recently uploaded

PDF
Bioactivity Data : Binding database and DrugBank
bySree
 
PDF
Understanding Work and Organisation. PDF
byNokwandaNzuza2
 
PDF
MedComm - 2024 - Wang - The interaction of innate immune and adaptive immune ...
byMuhammadSuyadi2
 
PPTX
Plant breeding part 3(quantitative characters, polygenic inheritance, heteros...
byRASHMI M G
 
PDF
Science, Education and Innovations in the Context of Modern Problems.pdf
byRahilNecef
 
PDF
Making an electromagnet by Stephen DeMeo
byStephenDeMeo
 
DOCX
I want to join occult for money ritual ✓❥❥+2349027025197 ❥❥.. join illuminati...
byOrldrado Brotherhood
 
PPTX
DNA replication (Introduction, methods, biochemistry, steps involved, prokary...
byRASHMI M G
 
PPTX
A Step-by-Step Guide - Calculating Water Hardness with EDTA Titration
byLearnbin
 
PDF
Stereoselective Reactions and Modern Reagents in Chemistry.pdf
byDr. Anand S. Burange
 
PPT
1.2 THE MOLE CONCEPT.PPT relationships with mole concept
bysunitha671758
 
PPT
Free Radicals: A cellular way to understand
byDRARUNKUMAR60
 
PPTX
signal transduction pathway- biochemistry
byAswinMunroe
 
PPTX
PHARMACOLOGYhhgjiiuhkouhk9ijjuokhikkijiok
byMyatThandar9
 
PDF
Near the Runaway: The Climate and Habitability of Teegarden’s Star b
bySérgio Sacani
 
PPTX
IN SITU CONSERVATION(introduction, aim and objectives, types, monitoring and ...
byRASHMI M G
 
PPTX
TOPIC 5 Antibiotics, vaccines and diseases.pptx
byHamzaImran55
 
PDF
s13613-024-01355-6 jurnal terkait imun.pdf
byMuhammadSuyadi2
 
PPT
Free Radicals in Human System: A way to understand
byDRARUNKUMAR60
 
PPTX
Ecology IGCSE biology 0610 presentation .pptx
byduaaalwakeel5
 
Bioactivity Data : Binding database and DrugBank
bySree
 
Understanding Work and Organisation. PDF
byNokwandaNzuza2
 
MedComm - 2024 - Wang - The interaction of innate immune and adaptive immune ...
byMuhammadSuyadi2
 
Plant breeding part 3(quantitative characters, polygenic inheritance, heteros...
byRASHMI M G
 
Science, Education and Innovations in the Context of Modern Problems.pdf
byRahilNecef
 
Making an electromagnet by Stephen DeMeo
byStephenDeMeo
 
I want to join occult for money ritual ✓❥❥+2349027025197 ❥❥.. join illuminati...
byOrldrado Brotherhood
 
DNA replication (Introduction, methods, biochemistry, steps involved, prokary...
byRASHMI M G
 
A Step-by-Step Guide - Calculating Water Hardness with EDTA Titration
byLearnbin
 
Stereoselective Reactions and Modern Reagents in Chemistry.pdf
byDr. Anand S. Burange
 
1.2 THE MOLE CONCEPT.PPT relationships with mole concept
bysunitha671758
 
Free Radicals: A cellular way to understand
byDRARUNKUMAR60
 
signal transduction pathway- biochemistry
byAswinMunroe
 
PHARMACOLOGYhhgjiiuhkouhk9ijjuokhikkijiok
byMyatThandar9
 
Near the Runaway: The Climate and Habitability of Teegarden’s Star b
bySérgio Sacani
 
IN SITU CONSERVATION(introduction, aim and objectives, types, monitoring and ...
byRASHMI M G
 
TOPIC 5 Antibiotics, vaccines and diseases.pptx
byHamzaImran55
 
s13613-024-01355-6 jurnal terkait imun.pdf
byMuhammadSuyadi2
 
Free Radicals in Human System: A way to understand
byDRARUNKUMAR60
 
Ecology IGCSE biology 0610 presentation .pptx
byduaaalwakeel5
 

trusted computing for security confe.ppt

  • 1.
    Trusted Computing BY: SamRanjbari Billy J. Garcia
  • 2.
    What is it? TrustedComputing (TC) is an open standard for hardware enabled trusted computing and security technologies. This means a more secure PC that only trusts the software creators not the owner
  • 3.
    Trusted Computing  TCwas created by the non-for-profit organization Trusted Computing Group (TCG);  An alliance of Microsoft, Intel, IBM, HP, AMD and …  A list can be found at this link https://www.trustedcomputinggroup.org/a bout/members/
  • 4.
    What does Trustmean?  Trust means that something does as it is intended to do  TCG defines trust as “an entity can be trusted if it always behaves in the expected manner for the intended purpose”.  For example, when you save or read something from your hard drive, you want the data to be written and read accurately like it is intended to be, but you have to trust it to write and read without errors.
  • 5.
    Who do Itrust? Me!  Today a computer trusts one of two entities in a user and hacker model.  The user is trusted and the hacker is not.
  • 6.
    Continue  But whendoes a computer know that the user is not doing something harmful?  With TC the user and the hacker are both not trusted. This ensures that nothing is done that can compromise the security of the PC.
  • 7.
    So How doesTC work?  For TC to work you have to use the Trusted Computing Module (TPM) which is a hardware system where the core (root) of trust in the platform will reside.  TPM will be implemented using a security microchip that handles security with encryption.
  • 8.
    Groups of securehardware  They are memory curtaining, secure input and output, sealed storage, and remote attestation.  It is also important to mention the concept of the endorsement key.  The endorsement key is a 1,048 bit RSA private and public key that is created randomly on a microchip during the manufacturing of the chip. The private key is only used by the chip while the public key is used for attestation and for the encryption of sensitive data sent to the chip. 
  • 9.
    endorsement key  Thekey is used to allow secure transactions by the TPM using a protocol created by TCG. This prevents a TPM emulator from starting a trusted entity. TPM is also designed to prevent extraction of the key from hardware analysis
  • 10.
    …Groups of secureHardware  Memory curtaining is hardware enforced memory isolation that will prevent software from being able to read or write to other software’s memory.  Today hackers can read memory and alter applications’ memory to do evil deeds that are not intended.
  • 11.
    …Groups of secureHardware  Secure input and output will prevent threats from key loggers or screen grabbers from intruders.  Using encrypted input and output will prevent the intruders from being able to see what the user types or what is on the users screen because the input from the keyboard to the software and the output from the software to the screen are encrypted.
  • 12.
    …Groups of secureHardware  Today hard drives are insecure by storing cryptographic keys on a hard drive that intruders can access.  User’s passwords, documents, and other information are also unprotected on today’s storage.
  • 13.
    …Groups of secureHardware  With sealed storage the keys are generated using the hardware and the software  For example, when you install a email client on a set of hardware a key is generated and used for the data that is saved and read from the email client.  If a virus is running on the PC it will not be able to read the email because the virus and the hardware combo generate a different key!
  • 14.
    …Groups of secureHardware  With remote attestation a certificate is generated in hardware of the software installed and running on a computer.  This allows software writers to check and ensure that their software is unmodified and has not been hacked.  Identity of the software is verified with a hash that will change if the software has been changed.  Since the hash is compared to a remote hash the intruder has no way of forging altered software.
  • 15.
    Trusted Computing  Notonly TC is used for PCs but it is also going to be used for more hardware such as set top boxes, mobile phones, servers, storage devices, networks and more. 
  • 16.
    Trusted Computing  Sowhen will we see TC being used?  For TC to work you have to have hardware with the TPM, and software to work with the TPM. Windows Vista is the next generation operating system by Microsoft that will make use of TC, although Microsoft likes to call it Trustworthiness.
  • 17.
    Trusted Computing  Sofar both AMD and Intel are working on a new processor to use TPM.  Well, who would want to use TC?  So far the computer industry is supporting TC and the Army wants all of their computers by 2010 to use a secure model such as TC.
  • 18.
    Use of TrustedComputing  Other software that uses TC are openTC, EMSCB, Forum for Open SW based TC, Enforcer, Next-Generation Secure Computing Base (NGSCB), TruoSerS – The open-source TCG Software Stack, and Trusted Java.
  • 19.
    Conclusion  Trusted Computingis an industry standard created to protect a user from intruders and unsafe actions.  With Trusted Computing the PC will decide who should be trusted and what is safe and unsafe using the Trusted Platform Module.  By default no one is trusted except the hardware and the software publishers. Not even the PC users are trusted. TC was created for our benefits for sure…
  • 20.