Authenticated Operation of Open Computing Devices

  • Paul England
  • Marcus Peinado
Conference paper
Part of the Lecture Notes in Computer Science book series (LNCS, volume 2384)


We describe how an open computing device can be extended to allow individual programs and operating systems to have exclusive access to cryptographic keys. This problem is of fundamental importance in areas such as virus protection, protection of servers from network attacks, network administration and copy protection. We seek a system that can be unconditionally robust against software attacks. This requires measures in hardware and in software. Our analysis allows us to minimize the amount of additional hardware needed to support the system.


Computing Device Central Processing Unit Access Control Policy Access Control Model Exclusive Access 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. 1.
    DOD 5200.28-STD. Department of defense trusted computer system evaluation criteria. December 1985.Google Scholar
  2. 2.
    Trusted Computing Platform Alliance. TCPA main specification version 1.1., 2001.
  3. 3.
    W. A. Arbaugh, D. J. Faber, and J. M. Smith. A secure and reliable bootstrap architecture. In Proceedings of the 1997 IEEE Symposium on Security and Privacy, pages 65–71, 1997.Google Scholar
  4. 4.
    D. Aucsmith. Tamper-resistant software: An implementation. In Ross Anderson, editor, Information hiding: first international workshop, Cambridge, U.K., volume 1174 of Lecture Notes in Computer Science, pages 317–333. Springer-Verlag, 1996.Google Scholar
  5. 5.
    B. Barak, O. Goldreich, R. Impagliazzo, S. Rudich, A. Sahai, S. Vadhan, and K. Yang. On the (im)possibility of obfuscating programs. In Advances in Cryptology-CRYPTO 2001, pages 1–18. Springer-Verlag, 2001.Google Scholar
  6. 6.
    M. Bellare, R. Canetti, and H. Krawczyk. Keying hash functions for message authentication. In Advances in Cryptology-Crypto’96, number 1109 in Lecture Notes in CS, 1996.Google Scholar
  7. 7.
    P. England, J. DeTreville, and B. Lampson. A trusted open platform. Unpublished.Google Scholar
  8. 8.
    N. Itoi, W. A. Arbaugh, S. J. Pollack, and D. M. Reeves. Personal secure booting. In V. Varadharajan and Y. Mu, editors, Information Security and Privacy-6th Australasian Conference, ACISP 2001. Springer-Verlag, 2001.Google Scholar
  9. 9.
    B. Lampson. Protection. ACM Operating Systems Review, 8(1):18–24, 1974.CrossRefGoogle Scholar
  10. 10.
    B. Lampson, M. Abadi, and M. Burrows. Authentication in distributed systems: Theory and practice. ACM Transactions on Computer Systems, 10:265–310, November 1992.Google Scholar
  11. 11.
    A. Menezes, P. van Oorschot, and S. Vanstone. Handbook of Applied Cryptography. CRC Press, 1997.Google Scholar
  12. 12.
    S. W. Smith and V. Austel. Trusting trusted hardware: Towards a formal model for programmable secure coprocessors. In Proceedings of the Third USENIX Workshop on Electronic Commerce, pages 83–98, 1998.Google Scholar
  13. 13.
    S. W. Smith, E. R. Palmer, and S. Weingart. Using a high-performance, programmable secure coprocessor. In Proceedings of the Second International Conference on Financial Cryptography. Springer-Verlag, 1998.Google Scholar
  14. 14.
    S. W. Smith and S. Weingart. Building a high-performance, programmable secure coprocessor. Computer Networks, 31(8):831–860, April 1999.CrossRefGoogle Scholar
  15. 15.
    B. Yee. Using Secure Coprocessors. PhD thesis, Carnegie Mellon University, 1994.Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2002

Authors and Affiliations

  • Paul England
    • 1
  • Marcus Peinado
    • 1
  1. 1.MicrosoftRedmondUSA

Personalised recommendations