Advertisement

An Application-Oriented Efficient Encapsulation System for Trusted Software Development

  • Zheng Tao
  • Jun HuEmail author
  • Jing Zhan
  • Mo Li
  • Chunzi Chen
Conference paper
  • 370 Downloads
Part of the Lecture Notes in Computer Science book series (LNCS, volume 9565)

Abstract

Trusted computing provides an efficient and practical way out for system security problems based on a trusted hardware, namely the root of trust, e.g., Trusted Platform Module (TPM), Trusted Cryptographic Module (TCM), Trusted Platform Control Module (TPCM), so on and so forth. However, current applications calling for trusted functions have to use either the user-space trusted interfaces (e.g., Trusted Software Stack (TSS) API) or to implement customized APIs on top of the trusted hardware driver; both of them are well known of steep learning curve, which indicates error prone and low-efficient development and complex maintenance for the application of trusted software. This paper presents a new trusted encapsulation architecture and the proof-of-concept system with the aim to mitigate the gap between the current obscure trusted APIs and the actual trusted applications for trusted software development. Our system can provide high-level and much simplified trusted transaction interfaces for user applications, which can rapidly reduce the development and maintenance work for the developers and users without too much performance costs. We also present a secure remote login use-case using mainly the binding and unbinding trusted functions of our trusted encapsulation architecture.

Keywords

Trusted computing Application-oriented Trusted software development 

Notes

Acknowledgments

This work is supported by grants from the China 863 High-tech Programme (Project No. 2015AA016002) and Specialized Research Fund for the Doctoral Program of Higher Education (Project No. 20131103120001).

References

  1. 1.
    Shen, C., Zhang, H., Wang, H., et al.: Study of trusted computing and its development. Sci. China Inf. Sci. 40(2), 139–166 (2010). (in Chinese)MathSciNetGoogle Scholar
  2. 2.
    Zhang, K., et al.: Reconfigurable security protection system based on NetFPGA and embedded soft-core technology. In: The International Conference on Computer Design and Applications (ICCDA 2010), vol. 5, pp. 540–544 (2010)Google Scholar
  3. 3.
    Feng, D., Yu, Q., Wei, F., et al.: The theory and practice in the evolution of trusted computing. Sci. Bull. 59(32), 4173–4189 (2014)CrossRefGoogle Scholar
  4. 4.
    Berger, B.: Trusted computing group history. Inf. Secur. Tech. Rep. 10, 59–62 (2005)CrossRefGoogle Scholar
  5. 5.
    Trusted Computing Group: TPM main specification. Main specification version 1.2 rev. 103, Trusted Computing Group, July 2007Google Scholar
  6. 6.
    Stüble, C., Zaerin, A.: \(\mu \)TSS – a simplified trusted software stack. In: Acquisti, A., Smith, S.W., Sadeghi, A.-R. (eds.) TRUST 2010. LNCS, vol. 6101, pp. 124–140. Springer, Heidelberg (2010)CrossRefGoogle Scholar
  7. 7.
    Trusted Computing Group: TCG Software Stack (TSS) specifiction, version 1.2, Errata A[EB/OL] (2009). http://www.trustedcomputinggroup.org/resources/tcg-SOftware_stack-tss_specification
  8. 8.
    Shi, W.: On design of a trusted software base with support of TPCM. In: Chen, L., Yung, M. (eds.) INTRUST 2009. LNCS, vol. 6163, pp. 1–15. Springer, Heidelberg (2010)CrossRefGoogle Scholar
  9. 9.
    Trusted Computing Group: TCG architecture TPM library specification 2.0 (2014). http://www.trustedcomputinggroup.org/resources/tpm_library_specification/
  10. 10.
    State Cryptography Administration Office of Security Commercial Code Administration (OSCCA): Functionality and Interface Specification of Cryptographic Support Platform for Trusted Computing. http://www.oscca.gov.cn/UpFile/File64.PDF

Copyright information

© Springer International Publishing Switzerland 2016

Authors and Affiliations

  • Zheng Tao
    • 1
    • 2
    • 3
  • Jun Hu
    • 1
    • 2
    • 3
    Email author
  • Jing Zhan
    • 1
    • 2
    • 3
  • Mo Li
    • 1
    • 2
    • 3
  • Chunzi Chen
    • 1
    • 2
    • 3
  1. 1.College of Computer ScienceBeijing University of TechnologyBeijingChina
  2. 2.Beijing Key Laboratory of Trusted ComputingBeijingChina
  3. 3.National Engineering Laboratory for Critical Technologies of Information Security Classified ProtectionBeijingChina

Personalised recommendations