首页> 外文会议>Trusted Computing-Challenges and Applications >Embedded Trusted Computing with Authenticated Non-volatile Memory
【24h】

Embedded Trusted Computing with Authenticated Non-volatile Memory

机译:带身份验证的非易失性存储器的嵌入式可信计算

获取原文
获取原文并翻译 | 示例

摘要

Trusted computing is an emerging technology to improve the trustworthiness of computing platforms. The Trusted Computing Group has proposed specifications for a Trusted Platform Module and a Mobile Trusted Module. One of the key problems when integrating these trusted modules into an embedded system-on-chip design, is the lack of on-chip multiple-time-programmable non-volatile memory. In this paper, we describe a solution to protect the trusted module's persistent state in external memory against non-invasive attacks. We introduce a minimal cryptographic protocol to achieve an authenticated channel between the trusted module and the external non-volatile memory. A MAC algorithm has to be added to the external memory to ensure authenticity. As a case study, we discuss trusted computing on reconfigurable hardware. In order to make our solution applicable to the low-end FPGA series which has no security measures on board, we present a solution that only relies on the reverse engineering complexity of the undocumented bitstream encoding and uses a physically unclonable function for one-time-programmable key storage. Clearly, this solution is also applicable to high-end series with special security measures on board. Our solution also supports field updates of the trusted module.
机译:可信计算是一种新兴技术,可以提高计算平台的可信度。可信计算小组已经提出了可信平台模块和移动可信模块的规范。将这些可信模块集成到嵌入式片上系统设计中时,关键问题之一是缺少片上可多次编程的非易失性存储器。在本文中,我们描述了一种解决方案,可以保护外部存储器中受信任模块的持久状态免受非侵入式攻击。我们引入了一种最小加密协议,以在可信模块和外部非易失性存储器之间实现经过身份验证的通道。必须将MAC算法添加到外部存储器以确保真实性。作为案例研究,我们讨论了可重配置硬件上的可信计算。为了使我们的解决方案适用于没有任何安全措施的低端FPGA系列,我们提出一种解决方案,该解决方案仅依赖于未记录的比特流编码的逆向工程复杂性,并且一次性使用物理上不可克隆的功能-可编程密钥存储。显然,该解决方案也适用于带有特殊安全措施的高端系列。我们的解决方案还支持可信模块的现场更新。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有
  • 客服微信

  • 服务号