A Formal Analysis of Authentication in the TPM

12 years 11 months ago

Download www.lsv.ens-cachan.fr

The Trusted Platform Module (TPM) is a hardware chip designed to enable computers to achieve a greater level of security than is possible in software alone. To this end, the TPM provides a way to store cryptographic keys and other sensitive data in its shielded memory. Through its API, one can use those keys to achieve some security goals. The TPM is a complex security component, whose specification consists of more than 700 pages. We model a collection of four TPM commands, and we identify and formalise their security properties. Using the tool ProVerif, we rediscover some known attacks and some new variations on them. We propose modifications to the API and verify our properties for the modified API.

Stéphanie Delaune, Steve Kremer, Mark Dermo

Real-time Traffic

Complex Security Component | IFIP 2010 | Programming Languages | Security | Trusted Platform Module |

claim paper

» A Formal Analysis of Some Properties of Kerberos 5 Using MSR

» Specifying Authentication Using Signal Events in CSP

» Compositional Analysis of Authentication Protocols

» Formal analysis of cardbased payment systems in mobile devices

» Formal Modeling of Authentication in SIP Registration

» Approximate Message Authentication and Biometric Entity Authentication

» Formal Analysis of the Estonian MobileID Protocol

» Analysis of Web Services Secure Conversation with Formal Methods

Post Info
More Details (n/a)

Added	18 May 2011
Updated	18 May 2011
Type	Journal
Year	2010
Where	IFIP
Authors	Stéphanie Delaune, Steve Kremer, Mark Dermot Ryan, Graham Steel

Comments (0)

Sciweavers

A Formal Analysis of Authentication in the TPM

Complex Security Component | IFIP 2010 | Programming Languages | Security | Trusted Platform Module |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers