DOCSLIB.ORG

TCPA Main Specification Version 1.1B

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
TCPA Main Specification Version 1.1B Trusted Computing Platform Alliance (TCPA) Main Specification Version 1.1b Published by the Trusted Computing Group Copyright © 2003 Trusted Computing Group, Incorporated. Copyright © 2000-2001 Compaq Computer Corporation, Hewlett-Packard Company, IBM Corporation, Intel Corporation, Microsoft Corporation Previously published by Trusted Computing Platform Alliance under the title: Trusted Computing Platform Alliance (TCPA) Main Specification Version 1.1a. DISCLAIMERS: THIS SPECIFICATION IS PROVIDED "AS IS" WITH NO WARRANTIES WHATSOEVER, INCLUDING ANY WARRANTY OF MERCHANTABILITY, NONINFRINGEMENT, FITNESS FOR ANY PARTICULAR PURPOSE, OR ANY WARRANTY OTHERWISE ARISING OUT OF ANY PROPOSAL, SPECIFICATION OR SAMPLE. Without limitation, TCG disclaims all liability, including liability for infringement of any proprietary rights, relating to use of information in this specification and to the implementation of this specification, and TCG disclaims all liability for cost of procurement of substitute goods or services, lost profits, loss of use, loss of data or any incidental, consequential, direct, indirect, or special damages, whether under contract, tort, warranty or otherwise, arising in any way out of use or reliance upon this specification or any information herein. No license, express or implied, by estoppel or otherwise, to any TCG or TCG member intellectual property rights is granted herein. Except that a license is hereby granted by TCG to copy and reproduce this specification for internal use only. TCPA Main Specification Page ii Contact the Trusted Computing Group at http://www.trustedcomputinggroup.org for information on specification licensing through membership agreements. Any marks and brands contained herein are the property of their respective owners. Copyright C 2005 Trusted Computing Group (TCG) (www.trustedcomputinggroup.org). All rights reserved. The only official, normative version of a TCG Specification or related document is the English-language text adopted by TCG under its Bylaws and published on the TCG website, www.trustedcomputing.org. TCG does not guarantee the accuracy or completeness of any other version. Other language versions of Specifications and related documents are provided for convenience and are intended to be technically identical to the official English version, but they may contain translation and other errors. Translations may be provided by volunteers through the Trusted Computing Group's translation program (see www.trustedcomputinggroup.org/specifications. Other legal notices and terms governing the publication of materials on the TCG website are found at www.trustedcomputinggroup.org/about/legal. TCG incorporates by reference the same notices and terms with respect to TCG-authorized translations of Specifications and related documents, whether published on the TCG website or at another online location. Version 1.1b 22 February 2002 TCPA Main Specification Page iii Acknowledgement The Trusted Computing Group wishes to thank members of the PKI, PC Specific and Conformance Workgroup who contributed expertise and text to this document. Thanks must be given to the members of the TCG Technical Committee who were Michael Angelo, Boris Balacheff, Josh Benaloh, David Challener, Dhruv Desai, Paul England, David Grawrock, Bob Meinschein, Manny Novoa, Graeme Proudler, Jim Ward and Monty Wiseman. David Chan Technical Committee Chair Version 1.1b 22 February 2002 TCPA Main Specification Page iv Change History Version Date Description 0.44 July 2000 Voted by members as appropriate for public release with modifications. 0.90 August 2000 First version released to public. 0.91 October 26, 2000 Remove chapters 1 & 2. Complete reformat 0.92 4 November, 2000 Added new chapter for structures, updated functions to match IDL, editing changes. 1.0 RC1 28 November 2000 Incorporated comments cleaned up structures and made ready for publication. 1.0 RC2 11 December 2000 Incorporated changes from reflector. Added new change authorization command. 1.0 RC4 10 Jan 2001 Incorporated changes and fixed up IDL 1.0 RC5 11 Jan 2001 PKCS#1 changes 1.01 17 April 2001 Implemented corrections. Mid point save made to avoid problems with track changes in document 1.02 18 April 2001 Continue with changes for 1.1 release, changed IDL to table format 1.03 First attempt to reconcile IDL misses 1.04 7 May 2001 Mid level drop to show all changes in regard to IDL 1.06 17 May 2001 All CR’s complete 1.07 22 May 2001 Cleanup from WG messages and changing in Audit commands. 1.1 RC1 25 May 2001 Release candidate for specification 1.1 RC2 4 June 2001 All changes 1.1 RC3 12 June 2001 Removal of TSS commands, cleanup of parameter blocks, all comments from v1 reflector. 1.1 RC4 5 July 2001 Editing changes, candidate for final review 1.1 RC6 17 July 2001 All changes made and version ready for voting 1.1 31 July 2001 Voted on release of 1.1 1.1a 12th November 2001 Includes all errata up to and including #55 1.1b 22 February 2002 Includes all errata up to and including #85 Version 1.1b 22 February 2002 TCPA Main Specification Page v Table Of Contents 1. Forward ..............................................................................................................................................1 2. The Trusted Platform Subsystem.......................................................................................................2 2.1 Introduction.....................................................................................................................................2 2.2 Roots of Trust .................................................................................................................................2 2.2.1 Definitions................................................................................................................................3 2.2.2 Instantiations and Trust Bindings ............................................................................................3 2.3 Integrity Operations ........................................................................................................................5 2.3.1 Storage of Integrity Metrics .....................................................................................................5 2.3.2 Reporting of Integrity Metrics ..................................................................................................6 2.4 Use of Keys Associated with TPM Identities ..................................................................................7 2.5 Cryptographic Operations...............................................................................................................7 2.6 Opting to use a TPM.......................................................................................................................8 2.6.1 Enabling Ownership ................................................................................................................9 2.6.2 Activating a TPM .....................................................................................................................9 2.6.3 Selected operations...............................................................................................................11 2.7 Protected, Unprotected, and Connection Operations...................................................................13 3. Protection .........................................................................................................................................14 3.1 Introduction...................................................................................................................................14 3.2 Threat ...........................................................................................................................................14 3.3 Integrity .........................................................................................................................................15 3.4 Privileged Access .........................................................................................................................15 3.5 Side effects ...................................................................................................................................15 4. Structures and Defines.....................................................................................................................16 4.1.1 Endness of Structures ...........................................................................................................16 4.1.2 Byte Packing..........................................................................................................................16 4.1.3 Lengths..................................................................................................................................16 4.2 Defines..........................................................................................................................................17 4.2.1 Basic data types ....................................................................................................................17 4.2.2 Boolean types........................................................................................................................17 4.2.3 Helper redefinitions ...............................................................................................................17 4.2.4 Enumerated Helper redefinitions...........................................................................................18 4.2.5 Vendor specific......................................................................................................................19
Load more

Recommended publications
  • "Putting Trust Into Computing: Where Does It Fit?"
    "Putting Trust Into Computing: Where Does it Fit?" Monday, February 14, 2005 9:00 a.m. – 12:00 p.m. Copyright© 2005 Trusted Computing Group - Other names and brands are properties of their respective owners. Slide #1 Agenda 09:00am Introduction Jim Ward, IBM, TCG Board President / Chair 09:05am Trusted Network Connect Overview Thomas Hardjono, VeriSign 9:45am Open Source Solutions Dr. Dave Safford, IBM 10:25am Writing and Using Trusted Applications Ralph Engers, Utimaco Safeware AG; George Kastrinakis, Wave Systems; William Whyte, NTRU Cryptosystems, Inc. 11:15am Customer Case Studies Stacy Cannady, IBM; Manny Novoa, HP 11:50am Q&A Mark Schiller, HP; Jim Ward, IBM; Brian Berger, Wave Systems Copyright© 2005 Trusted Computing Group - Other names and brands are properties of their respective owners. Slide #2 Agenda 09:00am Introduction Jim Ward, IBM, TCG Board President / Chair Jim Ward is a Senior Technical Staff Member and security architect within the IBM software group division. Ward has been a core contributor in the security standards space and currently serves as the President and Board Chair of the Trusted Computing Group. Copyright© 2005 Trusted Computing Group - Other names and brands are properties of their respective owners. Slide #3 TCG Mission Develop and promote open, vendor-neutral, industry standard specifications for trusted computing building blocks and software interfaces across multiple platforms Copyright© 2005 Trusted Computing Group - Other names and brands are properties of their respective owners. Slide #4 TCG Board of Directors Copyright© 2005 Trusted Computing Group - Other names and brands are properties of their respective owners. Slide #5 TCG Organization Board of Directors Jim Ward, IBM, President and Chairman, Geoffrey Strongin, AMD, Mark Schiller, HP, David Riss, Intel, Steve Heil, Microsoft, Tom Tahan, Sun, Nicholas Szeto, Sony, Bob Thibadeau, Seagate, Thomas Hardjono, VeriSign Marketing Workgroup Technical Committee Advisory Council Administration Brian Berger, Wave Systems Graeme Proudler, HP Invited Participants VTM, Inc.
    [Show full text]
  • Open Source TPM Support
    Open Source TPM support Open source application and support software for TPM is available for several operating systems like Linux, Android and in different programming languages supporting the following scenarios: - embedded Systems - servers - mobile communication and portable devices (e.g. tablet computer or smartphone) Open source implementations can also be ported to other platforms and processors and may be act as a starting point for the development of new applications. Some open source projects from the following list are supported by Infineon while other packages are separately developed by independent parties. The following list of Open Source software utilizing Trusted Computing and/or TPM software makes no claim to be complete and represents a limited number of projects: 1. Linux TPM Driver ( http://www.kernel.org ) Linux device driver for Trusted Platform Modules (TPM) in standard kernel (Vanilla). 2. I2C driver for TPM The driver is available on Linux kernel.org ( https://lkml.org/lkml/2011/7/22/137 ) 3. Trusted GRUB ( http://sourceforge.net/projects/trustedgrub ) Trusted GRUB extends the GRUB bootloader for Linux platforms with TPM support. This makes it possible to provide a secure Bootstrap architecture; Code is in general useful for initializing a Trusted Platform Module and execute integrity measurement based on Trusted Computing. 4. UBoot based on TPM with I2C ( http://git.chromium.org/gitweb/?p=chromiumos/third_party/u- boot.git;a=tree;f=drivers/tpm/slb9635_i2c;hb=chromeos-v2011.03 ) UBoot involving TPM using I2C interface. 5. The TROUSERS project ( http://sourceforge.net/projects/trousers ): An open-source TCG Software Stack implementation created and released by IBM.
    [Show full text]
  • Multiple Stakeholder Model Revision 3.40
    R E Multiple Stakeholder Model F Published E Family “2.0” R Level 00 Revision 3.40 2 May 2016 E N C Contact: [email protected] E TCG PUBLISHED Copyright © TCG 2012-2016 TCG Published - Multiple Stakeholder Model Copyright TCG Copyright ©2012-2016 Trusted Computing Group, Incorporated. Disclaimer THIS REFERENCE DOCUMENT IS PROVIDED "AS IS" WITH NO WARRANTIES WHATSOEVER, INCLUDING ANY WARRANTY OF MERCHANTABILITY, NONINFRINGEMENT, FITNESS FOR ANY PARTICULAR PURPOSE, OR ANY WARRANTY OTHERWISE ARISING OUT OF ANY PROPOSAL, WHITE PAPER, OR SAMPLE. Without limitation, TCG disclaims all liability, including liability for infringement of any proprietary rights, relating to use of information in this reference document, and TCG disclaims all liability for cost of procurement of substitute goods or services, lost profits, loss of use, loss of data or any incidental, consequential, direct, indirect, or special damages, whether under contract, tort, warranty or otherwise, arising in any way out of use or reliance upon this document or any information herein. No license, express or implied, by estoppel or otherwise, to any TCG or TCG member intellectual property rights is granted herein. Contact the Trusted Computing Group at www.trustedcomputinggroup.org for information on TCG licensing through membership agreements. Any marks and brands contained herein are the property of their respective owners. Page ii TCG PUBLISHED Family “2.0” 2 May 2016 Copyright © TCG 2012-2016 Level 00 Revision 3.40 Published- Multiple Stakeholder Model Copyright TCG Acknowledgments The TCG wishes to thank all those who contributed to this reference document. Ronald Aigner Microsoft Bo Bjerrum Intel Corporation Alec Brusilovsky InterDigital Communications, LLC David Challener Johns Hopkins University, Applied Physics Lab Michael Chan Samsun Semiconductor Inc.
    [Show full text]
  • Trusted Computing
    Grazer Linux Tag 2006 Linux Powered Trusted Computing DI Martin Pirker <[email protected]> DI Thomas Winkler <[email protected]> GLT 2006 - Trusted Live Linux - Martin Pirker + Thomas Winkler, IAIK TU Graz 1 Übersicht ● Einführung und Motivation ● Trusted Computing - Geschichte ● TPM Chips: Hardware, Funktion und Anwendungen ● Chain of Trust ● Kryptografische Schlüssel und Schlüsselverwaltung ● Identitäten ● Attestierung ● Virtualisierung ● Stand der Dinge unter Linux: Treiber, Middleware, Anwendungen GLT 2006 - Trusted Live Linux - Martin Pirker + Thomas Winkler, IAIK TU Graz 2 Einführung ● einschlägige Medien voll mit Meldungen über Sicherheitsprobleme ● ständig neue Initiativen um diese Probleme zu lösen ● ein Ansatz: Trusted Computing von der Trusted Computing Group (TCG) ● bietet Möglichkeit festzustellen welche Software auf einem Computer ausgeführt wird ● soll Vertrauen in Computer erhöhen GLT 2006 - Trusted Live Linux - Martin Pirker + Thomas Winkler, IAIK TU Graz 3 Motivation (1/2) ● bis heute mehrere Millionen Rechner mit TPMs ausgeliefert – wer im Publikum hat schon ein TPM in seinem Rechner? – wer weiß was es kann und verwendet ihn? GLT 2006 - Trusted Live Linux - Martin Pirker + Thomas Winkler, IAIK TU Graz 4 Motivation (2/2) ● viele unklare und teilweise einseitige Medienberichte ● nächstes Microsoft Betriebssystem soll Trusted Computing unterstützen ● welche Perspektiven gibt es im Open Source Bereich? ● Ziele des Vortrags: – welche Technologien stecken hinter Trusted Computing? – verstehen der Wechselwirkungen und Konsequenzen – Anwendung(en) und Nutzen im Open Source Bereich GLT 2006 - Trusted Live Linux - Martin Pirker + Thomas Winkler, IAIK TU Graz 5 Trusted Computing - Organisation ● ursprünglich: TCPA – Trusted Computing Platform Alliance ● jetzt: TCG – Trusted Computing Group ● Führungspositionen (Promotors): – AMD, HP, IBM, Infineon, Intel, Lenovo, Microsoft, Sun ● Abstufungen der Mitgliedschaft bis hin zu akademischen Beobachtern (z.B.
    [Show full text]
  • TRUSTED COMPUTING GROUP (TCG) TIMELINE February 2011
    TRUSTED COMPUTING GROUP (TCG) TIMELINE February 2011 2003 Trusted Computing Group is announced with membership of 14 companies, including Promoters and board members AMD, Hewlett-Packard, IBM, Intel Corporation, Microsoft, Sony Corporation and Sun Microsystems, Inc. TCG structure and vision are created to enable extension of trusted computing beyond the PC into the enterprise. TCG adopts existing specifications for the Trusted Platform Module (TPM) security chip for clients and publishes as an open industry specification. 2004 TCG announces the Trusted Platform Module (TPM) specification 1.2. Manufacturers begin shipping a variety of enterprise desktop and notebook PCs equipped with TPMs and software to enable applications including data and file encryption, secure email, single sign-on, storage of certificates and passwords and other applications. Members begin participating in work groups to address security in mobile devices, storage, servers, peripherals and infrastructure requirements. TCG also announces the Trusted Network Connect (TNC) subgroup to work on an open specification for network access control and endpoint integrity and the addition of almost 30 new members to focus on the effort. Group starts to define requirements and use cases for an open specification. Membership expands to 98 companies by end of the year, with participation broadening beyond semiconductor and client companies to software developers, networking and storage companies. The group initiates an advisory council of leading IT, privacy, finance and security industry experts. The group also begins a liaison program with other industry standards groups and begins a mentoring program for those researchers and academic institutions doing research on trusted computing and related topics. 2005 The group expands its board of directors.
    [Show full text]
  • Working Document on Trusted Computing Platforms and in Particular on the Work Done by the Trusted Computing Group (TCG Group)
    ARTICLE 29 Data Protection Working Party 11816/03/EN WP 86 Working Document on Trusted Computing Platforms and in particular on the work done by the Trusted Computing Group (TCG group) Adopted on 23 January 2004 This Working Party was set up under Article 29 of Directive 95/46/EC. It is an independent European advisory body on data protection and privacy. Its tasks are described in Article 30 of Directive 95/46/EC and Article 14 of Directive 97/66/EC. The secretariat is provided by Directorate E (Services, Copyright, Industrial Property and Data Protection) of the European Commission, Internal Market Directorate-General, B-1049 Brussels, Belgium, Office No C100-6/136. Website: www.europa.eu.int/comm/privacy Working Document on Trusted Computing Platforms and in particular on the work done by the Trusted Computing Group (TCG group) THE WORKING PARTY ON THE PROTECTION OF INDIVIDUALS WITH REGARD TO THE PROCESSING OF PERSONAL DATA set up by Directive 95/46/EC of the European Parliament and of the Council of 24 October 19951, having regard to Articles 29 and 30 paragraphs 1 (a) and 3 of that Directive, having regard to its Rules of Procedure and in particular to articles 12 and 14 thereof, has adopted the present Working Document: Background and future perspectives for trusted computing platforms The concept of trusted computing platforms originates from the computer industry’s observation that the current personal computer model is not conducive to guaranteeing security, as demonstrated by virus attacks, the possibility of spying on data being input, pirating of software and works of art, etc.
    [Show full text]
  • TCG Guidance for Secure Update of Software and Firmware on Embedded Systems
    R E TCG Guidance for Secure Update of Software and Firmware on F Embedded Systems E R Version 1.0 Revision 72 E February 10, 2020 N Contact: C [email protected] E Published TCG Guidance for Secure Update of Software and Firmware on Embedded Systems | Version 1.0 | Revision 72 | 2/10/2020 | Published © TCG 2020 TCG Guidance for Secure Update of Software and Firmware on Embedded Systems DISCLAIMERS, NOTICES, AND LICENSE TERMS THIS DOCUMENT IS PROVIDED "AS IS" WITH NO WARRANTIES WHATSOEVER, INCLUDING ANY WARRANTY OF MERCHANTABILITY, NONINFRINGEMENT, FITNESS FOR ANY PARTICULAR PURPOSE, OR ANY WARRANTY OTHERWISE ARISING OUT OF ANY PROPOSAL, DOCUMENT OR SAMPLE. Without limitation, TCG disclaims all liability, including liability for infringement of any proprietary rights, relating to use of information in this document and to the implementation of this document, and TCG disclaims all liability for cost of procurement of substitute goods or services, lost profits, loss of use, loss of data or any incidental, consequential, direct, indirect, or special damages, whether under contract, tort, warranty or otherwise, arising in any way out of use or reliance upon this document or any information herein. This document is copyrighted by Trusted Computing Group (TCG), and no license, express or implied, is granted herein other than as follows: You may not copy or reproduce the document or distribute it to others without written permission from TCG, except that you may freely do so for the purposes of (a) examining or implementing TCG documents or (b) developing, testing, or promoting information technology standards and best practices, so long as you distribute the document with these disclaimers, notices, and license terms.
    [Show full text]
  • Trusted Computing & Digital Rights Management – Theory & Effects
    School of Mathematics and Systems Engineering Reports from MSI - Rapporter från MSI Trusted Computing & Digital Rights Management – Theory & Effects Daniel Gustafsson Tomas Stewén Sep MSI Report 04086 2004 Växjö University ISSN 1650-2647 SE-351 95 VÄXJÖ ISRN VXU/MSI/DA/E/--04086/--SE Preface First we want to thank Pernilla Rönn, Lena Johansson and Jonas Stewén that made it possible for us to carry out this master thesis at AerotechTelub. A special thank to Lena Johansson, our supervisor at AerotechTelub, for her help with ideas and opinions. A special thank to Jonas Stewén, employee at AerotechTelub, for his help with material and his opinions on our work. We also want to thank Ola Flygt our supervisor and Mathias Hedenborg our examiner at Växjö University. Växjö, June 2004 Abstract Trusted Computing Platform Alliance (TCPA), now known as Trusted Computing Group (TCG), is a trusted computing initiative created by IBM, Microsoft, HP, Compaq, Intel and several other smaller companies. Their goal is to create a secure trusted platform with help of new hardware and software. TCG have developed a new chip, the Trusted Platform Module (TPM) that is the core of this initiative, which is attached to the motherboard. An analysis is made on the TCG’s specifications and a summary is written of the different parts and functionalities implemented by this group. Microsoft is in the development stage for an operating system that can make use of TCG’s TPM and other new hardware. This initiative of the operating system is called NGSCB (Next Generation Secure Computing Base) former known as Palladium.
    [Show full text]
  • Trusted Computing and Linux
    Trusted Computing and Linux Kylene Hall Tom Lendacky Emily Ratliff IBM IBM IBM [email protected] [email protected] [email protected] Kent Yoder IBM [email protected] Abstract 1 Introduction The Trusted Computing Group (TCG) released the first set of hardware and software specifi- cations shortly after the creation of that group in 2003.1 This year, a short two years later, While Trusted Computing and Linux R may 20 million computers will be sold containing a seem antithetical on the surface, Linux users Trusted Platform Module (TPM) [Mohamed], can benefit from the security features, including which will largely go unused. Despite the system integrity and key confidentiality, pro- controversy surrounding abuses potentially en- vided by Trusted Computing. The purpose of abled by the TPM, Linux has the opportunity this paper is to discuss the work that has been to build controls into the enablement of the done to enable Linux users to make use of their Trusted Computing technology to help the end Trusted Platform Module (TPM) in a non-evil user control the TPM and take advantage of se- manner. The paper describes the individual curity gains that can be made by exercising the software components that are required to en- TPM properly. This paper will cover the pieces able the use of the TPM, including the TPM needed for a Linux user to begin to make use of device driver and TrouSerS, the Trusted Soft- the TPM. ware Stack, and TPM management. Key con- cerns with Trusted Computing are highlighted This paper is organized into sections covering along with what the Trusted Computing Group the goals of Trusted Computing, a brief intro- has done and what individual TPM owners can duction to Trusted Computing, the components do to mitigate these concerns.
    [Show full text]
  • TPM (Trusted Platform Module) Software: TSS (Trusted Software Stack)
    TCPA/TCG: Trusted Computing und Linux Wilhelm Dolle Director Information Technology Chemnitzer Linux-Tag 2004 interActive Systems GmbH 07. März 2004, Chemnitz Agenda Ziele / Hintergründe / Historie Status Quo Technik hinter TCPA und dem TPM IBM-Linux-Experimentalpaket (MS Palladium / NGSCB) Wahrheit und Spekulation? Forderungen! 2 Ziele von Trusted Computing / IT-Sicherheit Schutz vor Malware Integritätsüberprüfung des Betriebssystems vor dem Booten Authentisierung von Hard- und Software gegenüber dem Betriebssystem und externen Kommunikationspartnern Verbesserter Datenschutz und verbesserte Sicherheit beim Aufbewahren und Übertragen von Daten Vertraulichkeit, Integrität, Verfügbarkeit 3 Nebenwirkungen von Trusted Computing Zensur Verletzung der Privatsphäre Einschränkung der Nutzung des Computers und von Daten (DRM) 4 Trusted Computing / Sicherheitsmodelle Bell-LaPadula Modell Verschiedene Sicherheitsstufen No read-up / no write-down Fokus: Vertraulichkeit (militärische Nutzung) Biba Modell No read down / no write up Fokus: Integrität von Daten (kommerzielle Nutzung) Clark-Wilson Modell Zugriff auf Daten nur durch berechtigte Programme Separation of duties Audit wird zwingend vorgeschrieben 5 Trusted Computing / Sichere Systeme 1972: Referenzmonitor - abstrakte Maschine die alle Zugriffe von Subjekten (z. B. Benutzer, Prozesse) auf Objekte (z. B. Dateien, Ressourcen) überwacht und vermittelt Trusted Computing Base (TCB, Orange Book, 1985- 2000): Einheit von integrer Hard- und Software zur Durchsetzung von Sicherheitsrichtlinien TCB sollte
    [Show full text]
  • Trusted Computing Group (TCG)
    Trusted Computing Group (TCG) Embedded Systems Work Group Response US Federal Trade Commission FTC Seeks Input on Privacy and Security Implications of the Internet of Things Executive Summary The Trusted Computing Group (TCG) is a non-profit organization that creates open standards related to information security. The standards created by TCG are widely implemented across all sectors to address the formidable threats posed by sophisticated attackers. This document describes the technology and standards developed by TCG, documents related to best practices, points out the gaps, and recommends next steps. The complete list of recommendations is summarized at the end of the document. Introduction into the Trusted Computing Group Trust and security are fundamental requirements for commercial and private usage of modern information and communication technology. Users, enterprises, and governments are using digital processes through Internet of Things (IoT) every day in mission critical operations like trading, banking, the operation of critical infrastructures, and many others. The security properties needed to operate safe and dependable computing systems include: • Secure authentication to provide access to services and data only to authorized persons and organizations • Secure update mechanism with the following three enhancements: Check current device status remotely, confirm the completion of the software update and enable the creation of certifiable logs for audit purposes • Data and system integrity to be able to trust into retrieved information and services • Secure data storage to protect confidential information • Availability of data and services • Privacy protection • Safety and error tolerance As computing power, availability of information, and access to data and systems have fundamentally changed over the last years, the possibilities to attack systems have also increased.
    [Show full text]
  • Trusted Computing Group Introduction and Brief Technical Overview
    Addressing Mobile Security through Industry Standards Janne Uusilehto, Chairman, Mobile Phone Work Group 3GSM World Congress February 16, 2006 - Barcelona, Spain Copyright© 2005 Trusted Computing Group - Other names and brands are properties of their respective owners. Slide #1 Agenda 1. Why mobile platforms need standards- based security 2. Who is Trusted Computing Group 3. Trusted Computing Group’s mobile security initiative 4. Summary and questions Copyright© 2005 Trusted Computing Group - Other names and brands are properties of their respective owners. Slide #2 Why Add Trust to the Mobile Platform? • Mobile phones can be used for computing tasks, Internet access, e-commerce, content download etc. • Increasing variety and popularity of services require more trust and security in the device, service, content and network • Convergence of Internet and mobile domains requires a common trust approach • Malware, spam and physical theft of devices can be a threat Security is of utmost importance yet has been approached in a non-standardized manner Copyright© 2005 Trusted Computing Group - Other names and brands are properties of their respective owners. Slide #3 Time is right for mobile security standardization “IDC agrees that there is unlikely to be a major outbreak until the start of 2008” "A lot of this (cell phone attacks) is hyped to create a market that doesn't exist," said Neil "Despite this intense vendor - and media- MacDonald, group vice driven speculation - the necessary conditions president and research director at Gartner Inc. required for viruses or worms to pose a real "The market will exist rapidly spreading threat to more than 30 eventually because the percent of enterprise mobile devices will not devices are becoming converge until year-end 2007“ (Gartner) more powerful, but the threat today is minimal and overblown." Source: Eweek.com.
    [Show full text]