Trusted Computing Platforms. Design and Applications.

Contents

List of Figures

List of Tables

Preface

Acknowledgments

Chapter 1 INTRODUCTION

1.1 Trust and Computing

1.2 Instantiations

1.3 Design and Applications

1.4 Progression

Chapter 2 MOTIVATING SCENARIOS

2.1 Properties

2.2 Basic Usage

2.3 Examples of Basic Usage

2.4 Position and Interests

2.5 Examples of Positioning

2.6 The Idealogical Debate

2.7 Further Reading

Chapter 3 ATTACKS

3.1 Physical Attack

3.1.1 No Armor

3.1.2 Single Chip Devices

3.1.3 Multi-chip Devices

3.2 Software Attacks

3.2.1 Buffer Overflow

3.2.2 Unexpected Input

3.2.3 Interpretation Mismatches

3.2.4 Time-of-check vs Time-of-use

3.2.5 Atomicity

3.2.6 Design Flaws

3.3 Side- channel Analysis

3.3.1 Timing Attacks

3.3.2 Power Attacks

3.3.3 Other Avenues

3.4 Undocumented Functionality

3.4.1 Example: Microcontroller Memory

3.4.2 Example: FLASH Memory

3.4.3 Example: CPU Privileges

3.5 Erasing Data

3.6 System Context

3.7 Defensive Strategy

3.7.1 Tamper Evidence

3.7.2 Tamper Resistance

3.7.3 Tamper Detection

3.7.4 Tamper Response

3.7.5 Operating Envelope

3.8 Further Reading

Chapter 4 FOUNDATIONS

4.1 Applications and Integration

4.1.1 Kent

4.1.2 Abyss

4.1.3 Citadel

4.1.4 Dyad

4.2 Architectures

4.2.1 Physical Security

4.2.2 Hardware and Software

4.3 Booting

4.4 The Defense Community

4.5 Further Reading

Chapter 5 DESIGN CHALLENGES

5.1 Context

5.1.1 Personal

5.1.2 Commercial

5.2 Obstacles

5.2.1 Hardware

5.2.2 Software

5.3 Requirements

5.3.1 Commercial Requirements

5.3.2 Security Requirements

5.3.3 Authenticated Execution

5.4 Technology Decisions

5.5 Further Reading

Chapter 6 PLATFORM ARCHITECTURE

6.1 Overview

6.1.1 Security Architecture

6.2 Erasing Secrets

6.2.1 Penetration Resistance and Detection

6.2.2 Tamper Response

6.2.3 Other Physical Attacks

6.3 The Source of Secrets

6.3.1 Factory Initialization

6.3.2 Field Operations

6.3.3 Trusting the Manufacturer

6.4 Software Threats

6.4.1 Software Threat Model

6.4.2 Hardware Access Locks

6.4.3 Privacy and Integrity of Secrets

6.5 Code Integrity

6.5.1 Loading and Cryptography

6.5.2 Protection against Malice

6.5.3 Protection against Reburn Failure

6.5.4 Protection against Storage Errors

6.5.5 Secure Bootstrapping

6.6 Code Loading

6.6.1 Authorities

6.6.2 Authenticating the Authorities

6.6.3 Ownership

6.6.4 Ordinary Loading

6.6.5 Emergency Loading

6.7 Putting it All Together

6.8 What’s Next

6.9 Further Reading

Chapter 7 OUTBOUND AUTHENTICATION

7.1 Problem

7.1.1 The Basic Problem

7.1.2 Authentication Approach

7.1.3 User and Developer Scenarios

7.1.4 On-Platform Entities

7.1.5 Secret Retention

7.1.6 Authentication Scenarios

7.1.7 Internal Certification

7.2 Theory

7.2.1 What the Entity Says

7.2.2 What the Relying Party Concludes

7.2.3 Dependency

7.2.4 Soundness

7.2.5 Completeness

7.2.6 Achieving Both Soundness and Completeness

7.2.7 Design Implications

7.3 Design and Implementation

7.3.1 Layer Separation

7.3.2 The Code-Loading Code

7.3.3 The OA Manager

7.3.4 Naming

7.3.5 Summary

7.3.6 Implementation

7.4 Further Reading

Chapter 8 VALIDATION

8.1 The Validation Process

8.1.1 Evolution

8.1.2 FIPS 140-1

8.1.3 The Process

8.2 Validation Strategy

8.3 Formalizing Security Properties

8.3.1 Building Blocks

8.3.2 Easy Invariants

8.3.3 Controlling Code

8.3.4 Keeping Secrets

8.4 Formal Verification

8.5 Other Validation Tasks

8.6 Reflection

8.7 Further Reading

Chapter 9 APPLICATION CASE STUDIES

9.1 Basic Building Blocks

9.2 Hardened Web Servers

9.2.1 The Problem

9.2.2 Using a TCP

9.2.3 Implementation Experience

9.3 Rights Management for Big Brother’s Computer

9.3.1 The Problem

9.3.2 Using a TCP

9.3.3 Implementation Experience

9.4 Private Information

9.4.1 The Problem

9.4.2 Using a TCP: Initial View

9.4.3 Implementation Experience

9.4.4 Using Oblivious Circuits

9.4.5 Reducing TCP Memory Requirements

9.4.6 Adding the Ability to Update

9.5 Other Projects

9.5.1 Postal Meters

9.5.2 Kerberos KDC

9.5.3 Mobile Agents

9.5.4 Auctions

9.5.5 Marianas

9.5.6 Trusted S/MIME Gateways

9.5.7 Grid Tools

9.6 Lessons Learned

9.7 Further Reading

Chapter 10 TCPA/ TCG

10.1 Basic Structure

10.2 Outbound Authentication

10.3 Physical Attacks

10.4 Applications

10.5 Experimentation

10.6 TPM 1.2 Changes

10.7 Further Reading

Chapter 11 EXPERIMENTING WITH TCPA/TCG

11.1 Desired Properties

11.2 The Lifetime Mismatch

11.3 Architecture

11.4 Implementation Experience

11.5 Application: Hardened Apache

11.6 Application: OpenCA

11.7 Application: Compartmented Attestation

11.8 Further Reading

Chapter 12 NEW HORIZONS

12.1 Privilege Architectures

12.2 Hardware Research

12.2.1 XOM

12.2.2 MIT AEGIS

12.2.3 Cerium

12.2.4 Virtual Secure Coprocessing

12.2.5 Virtual Machine Monitors

12.2.6 Others

12.3 Software Research

12.3.1 Software-based Attestation

12.3.2 Hiding in Plain Sight

12.4 Current Industrial Platforms

12.4.1 Crypto Coprocessors and Tokens

12.4.2 Execution Protection

12.4.3 Capability-based Machines

12.5 Looming Industry Platforms

12.5.1 LaGrande

12.5.2 TrustZone

12.5.3 NGSCB

12.6 Secure Coprocessing Revisited

12.7 Further Reading

Glossary

References

About the Author

Index