Taming "trusted platforms" by operating system design

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 2908, Issue , 2004, Pages 286-302

  Sadeghi, Ahmad Reza ^a   Stühle, Christian ^b  

^a RUHR UNIVERSITY BOCHUM   (Germany)

^b SAARLAND UNIVERSITY   (Germany)

Author keywords

[No Author keywords available]

Indexed keywords

CELLULAR TELEPHONE SYSTEMS; COMPUTER OPERATING SYSTEMS; COPYRIGHTS; EMBEDDED SYSTEMS; HARDWARE; LINUX; SECURITY OF DATA; SYSTEMS ANALYSIS; TRUSTED COMPUTING;

ARCHITECTURAL PROBLEMS; BACKWARD COMPATIBILITY; COMPUTING PLATFORM; DIGITAL RIGHTS MANAGEMENT; LINUX- OPERATING SYSTEM; OPERATING SYSTEM DESIGN; OPERATING SYSTEM TECHNOLOGY; PRIVATE INFORMATION;

OPEN SYSTEMS;

EID: 35048881059     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-540-24591-9_22     Document Type: Article

References (41)

1. A. Alkassar and G. Stühle. Towards secure IFF - preventing mafia fraud attacks. In Proceedings of IEEE Military Conference (MILCOM), 2002.
2. R. J. Anderson. Security Engineering - A Guide to Building Dependable Distributed Systems. John Wiley & Sons, 2001.
3. R. J. Anderson. Security in open versus closed systems - the dance of Boltzmann, Coase and Moore. Technical report, Cambridge University, England, 2002.
4. R. J. Anderson. The TCPA/Palladium FAQ. http://www.cl.can.ac.uk/rja14/ tcpa-faq.html, 2002.
5. R. J. Anderson and M. Kühn. Tamper resistance - a cautionary note. In Proceedings of the 2nd USENIX Workshop on Electronic Commerce [38], pages 1-11.
6. J. L. Antonakos. The Pentium Microprocessor. Prentice Hall Inc.,1997.
7. W. A. Arbaugh. Improving the TCPA specification. IEEE Computer, pages 77-79, Aug. 2002.
8. W. A. Arbaugh, D. J. Farber, and J. M. Smith. A reliable bootstrap architecture. In Proceedings of the IEEE Symposium on Research in Security and Privacy, pages 65-71, Oakland, CA, May 1997. IEEE Computer Society, Technical Committee on Security and Privacy, IEEE Computer Society Press.
9. N. Asokan, H. Debar, M. Steiner, and M. Waidner. Authenticating public terminals. Computer Networks, 31(8):861-870, May 1999.
10. A. Carroll, M. Juarez, J. Polk, and T. Leininger. Microsoft "Palladium":A business overview. Technical report, Microsoft Content Security Business Unit, August 2002.
11. A. Carroll, M. Juarez, J. Polk, and T. Leininger. Microsoft "Palladium":A business overview - combining microsoft windows features, personal computing hardware, and software applications for greater security, personal privacy and system integrity. White paper, Microsoft Windows Trusted Platform Technologies, July 2002.
12. Common Criteria Project Sponsoring Organisations. Common Criteria for Information Technology Security Evaluation, Aug. 1999. Version 2.1, adopted by ISO/IEC as ISO/IEC International Standard (IS) 15408 1-3. Available from http://csrc.ncsl.nist.gov/cc/ccv20/ccv21ist.htm.
13. M. Corporation. Building a secure platform for trustworthy computing. White paper, Microsoft Corporation, Dec. 2002.
14. M. Corporation. Microsoft "Palladium" technical FAQ. http://www.microsoft.com, Aug. 2002.
15. D. E. Eastlake, S. D. Crocker, and J. I. Schiller. Randomness requirements for security. Internet Request for Comment RFC 1750, Internet Engineering Task Force, Dec. 1994.
16. L. Fraim. SCOMP:A solution to the multilevel security problem. In IEEE Computer, pages 26-34, July 1983.
17. M. Gasser. Building a Secure Computer System. Van Nostrand Reinhold Co.,New York, USA, 1988.
18. A. Gefflaut, T. Jaeger, Y. Park, J. Liedke, K. J. Elphistone, V. Uhlig, J. E. Tidswell, L. Deller, and L. Reuter. The SawMill multiserver approach. ACM SIGOPS European Workshop, Sept. 2000.
19. P. Gutmann. Software generation of practically strong random numbers. In Proceedings of the 7th USENIX Security Symposium, San Antonio, Texas, USA, Jan. 1998. USENIX.
20. H. Härtig, M. Hohmuth, and J. Wolter. Taming linux. In Proceedings of PART'98. TU Dresden, 1998.
21. II. Härtig, O. Kowalski, and W. Kühnhauser. The BirliX security architecture. Journal of Computer Security, 2(1):5-21, 1993.
22. T. Jaeger, K. Elphinstone, J. Liedtke, V. Panteleenko, and Y. Park. Flexible access control using IPC redirection. In Hot Topics in Operating Systems (HotOS VII), pages 191-196, Rio Rico, AZ, Mar. 1999.
23. B. Leslie and G. Heiser. Towards untrusted device drivers. Technical Report UNSW-CSE-TR-0303, School of Computer Science and Engineering, Mar. 2003.
24. J. Liedke. Clans and Chiefs, a new kernel level concept for operating systems. Working paper, GMD, 1991.
25. J. Liedke. Towards real micro-kernels. Communications of the ACM, 39(9), 1996.
26. P. Loscocco and S. Smalley. Integrating flexible support for security policies into the Linux operating system. Technical report, U.S. National Security Agency (NSA), Feb. 2001.
27. C. Mundie, P. de Vries, P. Haynes, and M. Corwine. Microsoft whitepaper on trustworthy computing. Technical report, Microsoft Corporation, Oct. 2002.
28. B. Pfitzmann, J. Riordan, C. Stüble, M. Waidner, and A. Weber. The PERSEUS system architecture. Technical Report RZ 3335 (#93381), IBM Research Division, Zurich Laboratory, Apr. 2001.
29. E. S. Raymond. The cathedral and the bazaar. http://www.openresources. com/documents/cathedral-bazaar/, August 1998.
30. D. Safford. Clarifying misinformation on TCPA. White paper, IBM Research, Oct. 2002.
31. D. Safford. The need for TCPA. White paper, IBM Research, Oct. 2002.
32. B. Schneier. Palladium and the TCPA. http://www.counterpane.com/crypto- gram-0208.html\#1.
33. S. Schoen. Palladium details. http://www.activewin.com/articles/2002/pd. shtml, 2002.
34. J. S. Shapiro, J. M. Smith, and D. J. Farber. EROS:a fast capability system. In Proceedings of the 17th ACM Symposium on Operating Systems Principles (SOSP'99), pages 170-185. Kiawah Island Resort, near Charleston, Sout Carolina, Dec. 1999. Appeared as ACM Operating Systems Review 33.5.
35. Trusted Computing Platform Alliance (TCPA). TCPA PC specific implementation specification, Sept. 2001. Version 1.00.
36. Trusted Computing Platform Alliance (TCPA). Main specification, Feb. 2002. Version 1.1b.
37. J. D. Tygar and A. Whitten. WWW electronic commerce and Java Trojan horses. In Proceedings of the 2nd USENIX Workshop on Electronic Commerce [38], pages 243-250.
38. USENIX. Proceedings of the 2nd USENIX Workshop on Electronic Commerce, Oakland, California, Nov. 1996.
39. D. A. Wheeler. More than a gigabuck:Estimating GNU/Linux's size. http://www.dwheeler.com/sloc/, June 2001.
40. Wintermute. TCPA and Palladium technical analysis. http://wintermute. homelinux.org/miscelanea/TCPASecurity.txt, Dec. 2002.
41. P. Zimmerman. The Official PGP User's Guide, prz@acm.org, 1994. The MIT Press In press. More in http://www.pegasus.esprit.ec.org/people/arne/pgp.html.