On-board credentials with open provisioning

Proceedings of the 4th International Symposium on ACM Symposium on Information, Computer and Communications Security, ASIACCS'09

Volumn , Issue , 2009, Pages 104-115

  Kostiainen, Kari ^a   Ekberg, Jan Erik ^a   Asokan, N ^a   Rantala, Aarne ^b  

^a NOKIA RESEARCH CENTER   (United States)

^b VTT TECHNICAL RESEARCH CENTRE OF FINLAND   (Finland)

Author keywords

Credentials; Provisioning protocols; Secure hardware; Trusted computing

Indexed keywords

ADDITIONAL COSTS; DEDICATED HARDWARE; DISTRIBUTED APPLICATIONS; NEW APPROACHES; PRIMARY CONTRIBUTION; PROPOSED ARCHITECTURES; PROVISIONING PROTOCOLS; SERVICE PROVIDER; TECHNICAL CHALLENGES; THIRD PARTIES; TRUSTED COMPUTING;

COMPUTER HARDWARE; HARDWARE; MOBILE DEVICES; NETWORK PROTOCOLS;

NETWORK SECURITY;

EID: 74049088382     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1533057.1533074     Document Type: Conference Paper

References (21)

1. ARM. Trustzone-enabled processor. http://www.arm.com/pdfs/DDI0301D- arm1176jzfs-r0p2-trmpdf.
2. Victor Costan, Luis Sarmenta, Marten van Dijk, and Srinivas Devadas. The trusted execution module: Commodity general-purpose trusted computing. In Proc. Eighth Smart Card Research and Advanced Application Conference, August 2008. http://people. csail.mit.edu/devadas/pubs/cardis08tempdf.
3. A. Doherty et al. Dynamic symmetric key provisioning protocol (dskpp). IETF Internet Draft, version 06, November 2008. http://tools.ietf.org/html/ draft-ietf-keyprov-dskpp-06.
4. Jeffrey Dwoskin and Ruby Lee. Hardware-rooted trust for secure key management and transient trust. In Proc. 14th ACM Conference on Computer and Communication Security, pages 389-400, October 2007.
5. Jan-Erik Ekberg, N. Asokan, Kari Kostiainen, and Aarne Rantala. Scheduling the execution of credentials in constrained secure environments. In Proc. ACM Workshop on Scalable Trusted Computing, Oct. 2008.
6. Jan-Erik Ekberg et al. Onboard credentials platform: Design and implementation. Technical Report NRC-TR-2008-001, Nokia Research Center, January 2008. http://research.nokia.com/files/NRCTR2008001pdf.
7. Jan-Erik Ekberg and Markku Kylänpää. Mobile trusted module. Technical Report NRC-TR-2007-015, Nokia Research Center, November 2007. http://research.nokia.com/files/NRCTR2007015pdf.
8. Sebastian Gajek, Ahmad-Reza Sadeghi, Christian Stueble, and Marcel Winandy. Compartmented security for browsers - or how to thwart a phisher with trusted computing. In Proc. of IEEE International Conference on Availability, Reliability and Security (ARES'07), April 2007.
9. GlobalPlatform. Why the mobile industry is evolving towards security, August 2007. GlobalPlatform white paper. http://www.globalplatform.org/uploads/ STIP-WhitePaperpdf.
10. Alex Halderman et al. Lest we remember: Cold boot attacks on encryption keys. In Proc. Usenix Security Symposium, 2008. http://citp. princeton.edu/memory/.
11. JavaCard Technology. http://java.sun.com/products/javacard/.
12. Ruby Lee et al. Architecture for protecting critical secrets in microprocessors. In Proc. 32nd International Symposium on Computer Architecture (ISCA '05), pages 2-13, May 2005.
13. The Programming Language Lua. http://www.lua.org/.
14. Jonathan McCune et al. Minimal TCB Code Execution (Extended Abstract). In Proc. IEEE Symposium on Security and Privacy, May 2007.
15. Magnus Nyström. Cryptographic Token Key Initialization Protocol (CT-KIP). IETF RFC 4758, November 2006.
16. Open Mobile Alliance - Device Management Working Group. http://www.openmobilealliance.org/Technical/DM.aspx.
17. Jay Srage and Jérôme Azema. M-Shield mobile security technology, 2005. TI White paper. http://focus.ti.com/pdfs/wtbu/ti-mshield- whitepaperpdf.
18. Edward Suh, Charles O'Donnell, Ishan Sachdev, and Srinivas Devadas. Design and implementation of the AEGIS single-chip secure processor using physical random function. In Proc. 32nd Annual International Symposium on Computer Architecture (ISCA '05), pages 25-36, May 2005.
19. TCG Infrastructure Workgroup. Subject Key Attestation Evidence Extension", Specification Version 1.0 Revision 7, June 2005. https://www.trusted computinggroup.org/specs/IWG/.
20. Trusted Platform Module (TPM) Specifications. https://www. trustedcomputinggroup.org/specs/TPM/.
21. WiMAX Forum. WiMAX Forum X.509 Device Certificate Profile Approved Specification, April 2008. http://www.wimaxforum.org/certification/x509- certificates/pdfs/wimax-forum-x509-device-certificate-profilepdf.