TOCTOU, traps, and trusted computing

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 4968 LNCS, Issue , 2008, Pages 14-32

  Bratus, Sergey ^a   D'Cunha, Nihal ^a   Sparks, Evan ^a   Smith, Sean W ^a  

^a DARTMOUTH COLLEGE   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

MEMORY ACCESSES; MONITORING CAPABILITIES; PLATFORM CONFIGURATIONS; SECURITY POLICIES; SOFTWARE PROTOTYPES; TRUSTED COMPUTING; VIRTUAL MACHINE MONITORS;

CODES (SYMBOLS); INFORMATION TECHNOLOGY; PUBLIC POLICY;

SOFTWARE PROTOTYPING;

EID: 54249122693     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-540-68979-9_2     Document Type: Conference Paper

References (28)

1. Trusted Computing Group: Homepage, http://www.trustedcomputinggroup.org
2. Proudler, G.: Concepts of Trusted Computing. In: Mitchell, C. (ed.) Trusted Computing, IET, pp, 11-27 (2005)
3. Bratus, S., Ferguson, A., McIlroy, D., Smith, S.: Pastures: Towards Usable Security Policy Engineering. In: ARES 2007: Proceedings of the The Second International Conference on Availability, Reliability and Security, Washington, DC, USA, pp. 1052-1059. IEEE Computer Society, Los Alamitos (2007)
4. Sadeghi, A.R., Stüble, C.: Property-Based Attestation for Computing Platforms: Caring about Properties, not Mechanisms. In: New Security Paradigms Workshop (2004)
5. Arce, I.: The Kernel Craze. IEEE Security and Privacy 2(3), 79-81 (2004)
6. Franklin, M., Mitcham, K., Smith, S.W., Stabiner, J., Wild, O.: CA-in-a-Box. In: Chadwick, D., Zhao, G. (eds.) EuroPKI 2005. LNCS, vol. 3545, pp. 180-190, Springer, Heidelberg (2005)
7. Xen: Virtual Machine Monitor, http://www.cl.cam.ac.uk/Research/SRG/netos/ xen/
8. Bochs: IA-32 Emulator Project, http://bochs.sourceforge.net/
9. QEMU: Open Source Processor Emulator, http://www.qemu.com/
10. Strasser, M.: Software-based TPM Emulator for Linux. Department of Computer Science. Swiss Federal Institute of Technology Zurich (2004)
11. Berger, S., Caceres, R., Goldman, K., Perez, R., Sailer, R., van Doom, L.: vTPM - Virtualizing the Trusted Platform Module. In: 15th Usenix Security Symposium, pp. 305-320 (2006)
12. D'Cunha, N.: Exploring the Integration of Memory Management and Trusted Computing, Technical Report TR 2007-594, Dartmouth College, Computer Science, Hanover, NH (May 2007)
13. Kursawe, K., Schellekens, D., Preneel, B.: Analyzing trusted platform communication (2005), http://www.esat.kuleuven.be/cosic/
14. Sadeghi, A.R., Selhorst, M., Stüble, C., Wachsmann, C., Winandy, M.: TCG Inside - A Note on TPM Specification Compliance.
15. Kauer, B.: OSLO: Improving the security of Trusted Computing. Technical report, Technische Universitat Dresden, Department of Computer Science (A later version appeared at USENIX Security 2007) (2007)
16. Sparks, E.: TPM Reset Attack, http://www.cs.dartmouth.edu/~pkilab/sparks/
17. Greene, T.: Integrity of hardware-based computer security is challenged. Network-World (June 2007)
18. Sparks, E.: A Security Assessment of Trusted Platform Modules. Technical Report TR2007-587, Dartmouth College, Computer Science, Hanover, NH (June 2007)
19. Boneh, D., Brumley, D.: Remote Timing Attacks are Practical. In: Proceedings of the 12th USENIX Security Symposium (2003)
20. Sailer, R., Zhang, X., Jaeger, T., van Doorn, L.: Design and Implementation of a TCG-based Integrity Measurement Architecture. In: USENIX Security Symposium, pp. 223-238 (2004)
21. Marchesini, J., Smith, S.W., Wild, O., Stabiner, J., Barsamian, A.: Open-Source Applications of TCPA Hardware. In: Yew, P.-C., Xue, J. (eds.) ACSAC 2004, LNCS, vol. 3189, pp. 294-303. Springer, Heidelberg (2004)
22. Marchesini, J., Smith, S.W., Wild, O., MacDonald, R.: Experimenting with TCPA/TCG Hardware, Or: How I Learned to Stop Worrying and Love The Bear. Technical Report TR2003-476, Dartmouth College, Computer Science, Hanover, NH (December 2003)
23. Halder, V., Chandra, D., Franz, M.: Semantic Remote Attestation: A Virtual Machine Directed Approach to Trusted Computing. In: USENIX Virtual Machine Research and Technology Symposium (2004)
24. Petrom Jr., N.L., Fraser, T., Molina, J., Arbaugh, W.A.: Copilot - a Coprocessor-based Kernel Runtime Integrity Monitor. In: 13th USENIX Security Symposium, pp. 179-194 (2004)
25. Shi, E., Perrig, A., van Doom, L.: BIND: A Fine-Grained Attestation Service for Secure Distributed Systems. In: IEEE Symposium on Security and Privacy, pp. 154-168 (2005)
26. Chen, X., Garfinkel, T., Lewis, E.C. Subrahmanyam, P., Waldspurger, C.A., Boneh, D., Dwoskin, J., Ports, D.R.: Overshadow: a virtualization-based approach to retrofitting protection in commodity operating systems. In: Proceedings of the 13th international conference on Architectural support for programming languages and operating systems, pp. 2-13, ACM, New York (2008)
27. Seshadri, A., Luk, M., Qu, N., Perrig, A.: SecVisor: a tiny hypervisor to provide lifetime kernel code integrity for commodity OSes. In: SOSP 2007: Proceedings of twenty-first ACM SIGOPS symposium on Operating systems principles, pp. 335-350, ACM, New York (2007)
28. Cabuk, S., Plaquin, D., Dalton, C.I.: A Dynamic Trust Management Solution for Platform Security Using Integrity Measurements. Technical report, Hewlett-Packard Laboratories (April 2007)