|
 ABSTRACT
The Trusted Computing Group (TCG) has addressed a new generation of computing platforms employing both supplemental hardware and software with the primary goal to improve the security and the trustworthiness of future IT systems. The core component of the TCG proposal is the Trusted Platform Module (TPM) providing certain cryptographic functions. Many vendors currently equip their platforms with a TPM claiming to be TCG compliant. However, there is no feasible way for application developers and users of TPM-enabled systems to verify this compliance. In practice, manufacturers may exploit the flexibility that the specification itself provides, or they may deviate from it by inappropriate design that might lead to security vulnerabilities. Hence, it is crucial to have an independent means for testing the compliance as well as analyzing the security of different TPMs. In this paper, we aim at making the first steps towards fulfilling this requirement: We have developed a test strategy as well as a prototype test suite for TPM compliance testing. Although our test does not cover the complete TCG specification, our test results show that many TPM implementations do not meet the TCG specification and have bugs. Moreover, we discuss that non-compliance may have crucial impact on security, and point out the corresponding security problems in case of a widespread TPM.
REFERENCES
Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.
| |
1
|
TrustedGRUB. http://www.prosec.rub.de/trusted_grub.html.
|
| |
2
|
Linux Device Driver for Infineon TPMs. http://www.prosec.rub.de/tpm/index.html, 2006.
|
| |
3
|
Atmel. AT97SC3201 --- The Atmel Trusted Platform Module. http://www.atmel.com/dyn/resources/prod_documents/doc5010.pdf, August 2004.
|
| |
4
|
Atmel. AT97SC3203 Advanced Information Summary. http://www.atmel.com/dyn/resources/prod_documents/5116s.pdf, July 2005.
|
| |
5
|
Atmel. AT97SC3203S for SMBus Protocol Summary. http://www.atmel.com/dyn/resources/prod_documents/5132s.pdf, August 2005.
|
| |
6
|
Atmel. Trusted Platform Module AT97SC3201 Summary. http://www.atmel.com/dyn/resources/prod_documents/2015s.pdf, June 2005.
|
| |
7
|
B. Beizer. Black Box Testing. John Wiley & Sons, 1995.
|
| |
8
|
Broadcom. Broadcom Revolutionizes LAN Communications by Introducing the World's First PCI Express Gigabit Ethernet Controllers for Server, Desktop and Mobile PCs. http://www.broadcom.com/press/release.php?id=461159, October 2003.
|
| |
9
|
Broadcom. BCM5752 Product Brief. http://www.broadcom.com/collateral/pb/5752-PB00-R.pdf, 2005.
|
| |
10
|
Broadcom. BCM5752M Product Brief. http://www.broadcom.com/collateral/pb/5752M-PB00-R.pdf, 2005.
|
| |
11
|
Broadcom. Broadcom Controllers Integrate TPM 1.2 enabling OEMs to Offer Hardware-Based Security as a Standard Feature on all PCs. http://www.broadcom.com/press/release.php?id=700509, 2005.
|
| |
12
|
T. S. Chow. Test design modeled by finite-state machines. IEEE Transactions on Software Engineering, 4(3):178--187, 1978.
|
| |
13
|
|
| |
14
|
Horst Görtz Institute for IT Security, Ruhr-University Bochum, Applied Data Security Group. Technical Report. http://www.prosec.rub.de/tpmcompliance.html, May 2006.
|
| |
15
|
Infineon Technologies AG. Product Brief --- TPM 1.2 Hardware. http://www.infineon.com/tpm, May 2005.
|
| |
16
|
D. Lee and M. Yannakakis. Principles and methods of testing finite state machines - A survey. In Proceedings of the IEEE, volume~84, pages 1090--1123, 1996.
|
| |
17
|
L. Li, S. A. Szygenda, and M. A. Thornton. Combining simulation and formal verification for integrated circuit design validation. In Proceedings of the 9th World Multi-Conference on Systemics, Cybernetics and Informatics (WMSCI), pages 92--97, 2005.
|
| |
18
|
Hue-Min Lin , Chia-Chih Yen , Che-Hua Shih , Jing-Yang Jou, On compliance test of on-chip bus for SOC, Proceedings of the 2004 conference on Asia South Pacific design automation: electronic design and solution fair, p.328-333, January 27-30, 2004, Yokohama, Japan
|
| |
19
|
National Semiconductor. Product Brief: PC8374T SafeKeeper Desktop TrustedI/O. http://www.winbond-usa.com/products/winbond_products/pdfs/APC/PC8374T.p df, August 2004.
|
| |
20
|
|
| |
21
|
Data Brief: ST19WP18-TPM-A Trusted Platform Module. http://www.st.com/stonline/products/literature/bd/10926.pdf, 2004.
|
| |
22
|
Data Brief: ST19WP18-TPM-B Trusted Platform Module. http://www.st.com/stonline/products/literature/bd/10927.pdf, 2004.
|
| |
23
|
Data Brief: ST19WP18-TPM-C Trusted Platform Module. http://www.st.com/stonline/products/literature/bd/10928.pdf, 2004.
|
| |
24
|
Trusted Computing Group (TCG). TCPA Main Specification, Version~1.1b. https://www.trustedcomputinggroup.org/specs/TPM/TCPA_Main_TCG_Architecture_v1_1b.pdf, February 2002.
|
| |
25
|
Trusted Computing Group (TCG). TPM Main Specification, Version 1.2 Revision 94. https://www.trustedcomputinggroup.org/specs/TPM/, March 2006.
|
CITED BY 8
|
|
|
|
|
|
|
|
Jonathan M. McCune , Adrian Perrig , Arvind Seshadri , Leendert van Doorn, Turtles all the way down: research challenges in user-based attestation, Proceedings of the 2nd USENIX workshop on Hot topics in security, p.1-5, August 07, 2007, Boston, MA
|
|
|
|
|
|
|
|
|
Frederic Stumpf , Andreas Fuchs , Stefan Katzenbeisser , Claudia Eckert, Improving the scalability of platform attestation, Proceedings of the 3rd ACM workshop on Scalable trusted computing, October 31-31, 2008, Alexandria, Virginia, USA
|
|
|
|
|
|
|
|
Adobe Acrobat
QuickTime
Windows Media Player
Real Player
Pdf
B.8