Trusted channels with password-based authentication and TPM-based attestation

2010 WRI International Conference on Communications and Mobile Computing, CMC 2010

Volumn 1, Issue , 2010, Pages 223-227

  Zhou, Lingli ^a   Zhang, Zhenfeng ^b  

^a INSTITUTE OF GEOLOGY AND GEOPHYSICS   (China)

^b INSTITUTE OF SOFTWARE   (China)

Author keywords

Passwordbased user authentication; TPM based attestation; Trusted channel; Trusted computing

Indexed keywords

AUTHENTICATED KEY EXCHANGE; CLIENT-SERVER APPLICATIONS; COLLUSION ATTACK; PASSWORD-BASED AUTHENTICATION; SECURE CHANNELS; SECURE SOCKETS LAYERS; TRANSPORT LAYER SECURITY PROTOCOLS; TRUSTED COMPUTING; USER AUTHENTICATION;

MOBILE COMPUTING; NETWORK PROTOCOLS; NETWORK SECURITY; THERMOELECTRIC POWER;

AUTHENTICATION;

EID: 77953977657     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/CMC.2010.232     Document Type: Conference Paper

References (14)

1. F. Armknecht, Y., Gasmi, Sadeghi, A., Stewin, P., Unger, M., An efficient implementation of trusted channels based on OpenSSL. Proc. of 3rd ACM workshop on Scalable Trusted Computing, pp. 41-50, ACM Press, 2008.
2. S.M. Bellovin, M. Merrit, Encrypted key exchange: passwordbased protocols secure against dictionary attacks. 1992 IEEE Symposium on Security & Privacy, pp.72-84, IEEE Press.
3. E. Brickell, J. Camenisch, L. Chen, Direct anonymous attestation. Proc. of 11th ACM conference on Computer and Communications Security, pp.132-145, ACM Press, 2004.
4. Y. Gasmi, A.R. Sadeghi, P. Stewin, M. Unger, N. Asokan, Beyond secure channels. Proc. of 2007 ACM Workshop on Scalable Trusted Computing, pp.30-40, ACM Press, 2007.
5. K. Goldman, R. Perez, R. Sailer, Linking remote attestation to secure tunnel endpoints. Proc. of 1st ACM Workshop on Scalable Trusted Computing, pp. 21-24, ACM Press, 2006.
6. S. Jiang, S. Smith, K. Minami, Securing Web servers against insider attack. Proc. of 17th Annual Computer Security Applications Conference, pp. 265-276, IEEE Press, 2001.
7. P. MacKenzie, On the security of the SPEKE passwordauthenticated key exchange protocol, Cryptology ePrint Archive, Report 2001/057, 2001.
8. A.R. Sadeghi, C. Stüble, M. Wolf, N. Asokan, J.E. Ekberg, Enabling fairer digital rights management with trusted computing. Proc.of ISC'07, LNCS 4779, pp.53-70, Springer 2007.
9. F. Stumpf, O. Tafreschi, P. Röder, C. Eckert, A robust integrity reporting protocol for remote attestation. In 2nd Workshop on Advances in Trusted Computing, WATC'06, 2006.
10. D.Taylor, T.Wu, T.Perrin, Using the secure remote password (SRP) protocol for TLS authentication. IETF RFC 5054.
11. TCG Infrastructure Working Group (IWG). TCG Infrastructure Working Group Reference Architecture for Interoperability (Part I), Specification Version 1.0 Revision 1, 2005.
12. Trusted Computing Group. TPM specification version 1.2 (parts 1-3). http://www.trustedcomputinggroup.org/specs/tpm/
13. Trusted Network Connect Work Group. TCG Trusted Network Connect TNC Architecture for Interoperability, Specification Version 1.2 Revision 4, 2007.
14. J. Yang, Z.F. Zhang, A new anonymous password-based authenticated key exchange protocol. INDOCRYPT 2008, LNCS, vol.5365, pp. 200-212, Springer, 2008.