Key Attestation from Trusted Execution Environments

13 years 3 months ago

Download www.trust.rub.de

Abstract. Credential platforms implemented on top of Trusted Execution Environments3 (TrEEs) allow users to store and use their credentials, e.g., cryptographic keys or user passwords, securely. One important requirement for a TrEE-based credential platform is the ability to attest that a credential has been created and is kept within the TrEE. Credential properties, such as usage permissions, should be also attested. Existing attestation mechanisms are limited to attesting which applications outside the TrEE are authorized to use the credential. In this paper we describe a novel key attestation mechanism that allows attestation of both TrEE internal and external key usage permissions. We have implemented this attestation mechanism for mobile phones with M-Shield TrEE.

Kari Kostiainen, Alexandra Dmitrienko, Jan-Erik Ek

Real-time Traffic

Attestation Mechanism | Credential | Credential Platform | Security Privacy | TRUST 2010 |

claim paper

» SAConf Semantic Attestation of Software Configurations

» SAKE Software Attestation for Key Establishment in Sensor Networks

» An Approach to a Trustworthy System Architecture Using Virtualization

» Remote Attestation on Legacy Operating Systems With Trusted Platform Modules

» Hardwarerooted trust for secure key management and transient trust

» Performance Optimizations for DAA Signatures on Java enabled Platforms

» Direct anonymous attestation

» Flicker an execution infrastructure for tcb minimization

Post Info
More Details (n/a)

Added	31 Jan 2011
Updated	31 Jan 2011
Type	Journal
Year	2010
Where	TRUST
Authors	Kari Kostiainen, Alexandra Dmitrienko, Jan-Erik Ekberg, Ahmad-Reza Sadeghi, N. Asokan

Comments (0)

Sciweavers

Key Attestation from Trusted Execution Environments

Attestation Mechanism | Credential | Credential Platform | Security Privacy | TRUST 2010 |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers