brian lamacchia agenda
play

Brian LaMacchia Agenda Guest lecture: Tolga Acar, Distributed Key - PowerPoint PPT Presentation

Feb 01, 2023 •233 likes •676 views

Winter 2011 Josh Benaloh Brian LaMacchia Agenda Guest lecture: Tolga Acar, Distributed Key Management and Cryptographic Agility Hardware crypto tokens Smart cards TPMs (v1.2 & .Next) tokens for PCs

  1. Winter 2011 Josh Benaloh Brian LaMacchia

  2. Agenda  Guest lecture: Tolga Acar, Distributed Key Management and Cryptographic Agility  Hardware crypto tokens  Smart cards  TPMs (v1.2 & “.Next”) – tokens for PCs  Virtualization and virtualized crypto tokens February 24, 2011 Practical Aspects of Modern Cryptography 2

  3. Agenda  Guest lecture: Tolga Acar, Distributed Key Management and Cryptographic Agility  Hardware crypto tokens  Smart cards  TPMs (v1.2 & “.Next”) – tokens for PCs  Virtualization and virtualized crypto tokens February 24, 2011 Practical Aspects of Modern Cryptography 3

  4. Slide Acknowledgements  Some of these slides are based on slides created by the following folks at MS:  Shon Eizenhoefer  Paul England  Himanshu Raj  David Wootten February 24, 2011 Practical Aspects of Modern Cryptography 4

  5. Agenda  Guest lecture: Tolga Acar, Distributed Key Management and Cryptographic Agility  Hardware crypto tokens  Smart cards  TPMs (v1.2 & “.Next”) – tokens for PCs  Virtualization and virtualized crypto tokens February 24, 2011 Practical Aspects of Modern Cryptography 5

  6. What is a smart card?  Long history, invented in the 1970s  Integrated Circuit Cards - ICC  Initially used for pay phone systems in France  Most successful deployment: GSM cell phones  Payment: EMV – Europay, MasterCard and VISA  Strong User Authentication. Some examples:  National eID programs in Asia and Europe  DoD CAC cards February 24, 2011 Practical Aspects of Modern Cryptography 6

  7. Benefits of smart cards  Provides secure storage for private keys & data  Tamper resistant  Cryptographically secure  Provides two factor authentication  Something you have – The Card  Something you know – The PIN (Also referred to as Card Holder Verification- CHV)  Programmable cards  Ex.: JavaCards, .NET Cards February 24, 2011 Practical Aspects of Modern Cryptography 7

  8. February 24, 2011 Practical Aspects of Modern Cryptography 8

  9. Possible eID scenarios Dial Corp Woodgrove Bank Government Tax Agency Domain Government eID Logon Bank Smartcard … Name Web Address Banking Submit/sign form … eID Issuance Email, IM, … Abby Smartcard + Reader / PIN pad Nicholas February 24, 2011 Practical Aspects of Modern Cryptography 9

  10. Stages in a Smart Card’s Life Cycle  Initial Issuance  PIN unblock  Renewal  Retirement  Revocation  Forgotten Smart Card February 24, 2011 Practical Aspects of Modern Cryptography 10

  11. Agenda  Guest lecture: Tolga Acar, Distributed Key Management and Cryptographic Agility  Hardware crypto tokens  Smart cards  TPMs (v1.2 & “.Next”) – tokens for PCs  Virtualization and virtualized crypto tokens February 24, 2011 Practical Aspects of Modern Cryptography 11

  12. Recall DKM-TPM Motivation from Tolga’s talk: Secret Protection Technology: TPM - b ased HSM Software Crypto Hardware Security Module Crypto No Hardware Cost: Expensive Moderate Inexpensive Security: Very Secure More Secure Moderate (OS-Dependent) Deployment: Hard Easier Easy • Approach sits between a pure HSM solution and a full software solution.

  13. What Is A Trusted Platform Module (TPM)? Smartcard-like module on the motherboard  Protects secrets  Performs cryptographic functions  RSA, SHA-1, RNG  Performs digital signature operations  Anchors chain of trust for keys and credentials TPM 1.2 spec:  Protects itself against attacks www.trustedcomputinggroup.org  Holds Platform Measurements (hashes)  Can create, store and manage keys Provides a unique Endorsement Key (EK)  Provides a unique Storage Root Key (SRK)  February 24, 2011 Practical Aspects of Modern Cryptography 13

  14. TPM v1.2 Key Features  Platform measurements  TPM can “measure” (hash w/ SHA -1) instruction sequences & store the results in “platform configuration registers” (PCRs)  Encryption  TPM can encrypt arbitrary data using TPM keys (or keys protected by TPM keys)  Sealed Storage  TPM can encrypt arbitrary data, using TPM keys (or keys protected by TPM keys) and under a set of PCR values  Data can only be decrypted later under the same PCR configuration  Attestation (in a moment) February 24, 2011 Practical Aspects of Modern Cryptography 14

  15. Sealed Storage  Why is Sealed Storage useful?  Provides a mechanism for defending against boot-time attacks  Example: Full Volume Encryption (FVE)  BitLocker ™ Drive Encryption on Windows February 24, 2011 Practical Aspects of Modern Cryptography 15

  16. Information Protection Threats Internal threats are just as prevalent as external threats Targeted Accidental Intentional Data Thief steals Loss due to intentionally asset based on carelessness compromised value of data Insider access System disposal or Theft of branch office to repurposing without server (high value and unauthorized data wipe volume of data) data System physically lost Theft of executive or Offline attack in transit government laptop on lost/stolen Direct attacks with laptop specialized hardware February 24, 2011 Practical Aspects of Modern Cryptography 16

  17. Booting w/ TPM measurements PreOS Static OS All Boot Blobs Volume Blob of Target OS unlocked unlocked TPM Init BIOS MBR BootSector BootBlock BootManager Start OS OS Loader February 24, 2011 Practical Aspects of Modern Cryptography 17

  18. Disk Layout And Key Storage OS Volume Contains Where’s the Encryption Key?  Encrypted OS 1. SRK (Storage Root Key) contained in TPM  Encrypted Page File 2. SRK encrypts FVEK (Full Volume  Encrypted Temp Files Encryption Key) protected by  Encrypted Data TPM/PIN/USB Storage Device  Encrypted Hibernation File 3. FVEK stored (encrypted by SRK) on hard drive in the OS Volume 3 OS Volume 2 FVEK 1 SRK System System Volume Contains: MBR, Boot manager, Boot Utilities (Unencrypted, small) February 24, 2011 Practical Aspects of Modern Cryptography 18

  19. Attestation  Sealed Storage lets a TPM encrypt data to a specific set (or subset) of PCR values  Attestation is an authentication technology  But more than “simple signing”  Attestation allows a TPM to sign data and a set (or subset) of the current PCR values  So the TPM “attests” to a certain software configuration (whatever was measured into those PCR registers) as part of its digital signature  “Quoting” 2/24/2011 19

  20. Key Recovery Scenarios  Lost/Forgotten Authentication Methods  Lost USB key, user forgets PIN  Upgrade to Core Files  Unanticipated change to pre-OS files (BIOS upgrade, etc…)  Broken Hardware  Hard drive moved to a new system  Deliberate Attack  Modified or missing pre-OS files (Hacked BIOS, MBR, etc…) February 24, 2011 Practical Aspects of Modern Cryptography 20

  21. TPM.Next  The TPM architecture after TPM v1.2  More than 3 years of specification development  Current work on TPM.Next is happening within the Trusted Computing Group (TCG) consortium  The actual TPM.Next specification is currently confidential  The only publicly available information is not very technical  I can talk about things that Microsoft has submitted to the TCG  But this may or may not show up in TPM.Next February 24, 2011 Practical Aspects of Modern Cryptography 21

  22. Cryptographic Algorithm Agility  TPM 1.2 is based on RSA 2048-bit and SHA-1 with little variability possible.  SHA-1 is being phased out.  Support for new asymmetric algorithms (ECC) is needed in some important markets.  Requirements to be able to support localization.  Can’t react quickly to a broken algorithm. February 24, 2011 Practical Aspects of Modern Cryptography 22

  23. Potential Solutions  Every use of a cryptographic algorithm should allow the TPM user to specify the algorithm to be used.  Much wider range of algorithm options while maintaining interface compatibility  Every data structure should be tagged to indicate the algorithms used to construct it.  No assumptions required or allowed.  Define sets of algorithms for interoperability.  Set is a combination of asymmetric, symmetric, and hash algorithms.  Allow multiple sets to be used simultaneously.  Support different security and localization needs.  Make it easy to replace broken algorithms without having to develop an entirely new specification or product. February 24, 2011 Practical Aspects of Modern Cryptography 23

  24. TPM Management  User has a difficult time understanding the TPM controls.  What is the difference between TPM enable and activate?  Security and privacy functions use the same controls.  Need to take ownership of TPM to use the Storage Root Key but that also enables Endorsement Key operations which are privacy sensitive.  PCR sealing model is brittle.  Makes it difficult to manage keys that rely on PCR values.  System updates that change a PCR measurement can be very disruptive. February 24, 2011 Practical Aspects of Modern Cryptography 24

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Brian LaMacchia Agenda Guest lecture: Christian Rechberger, KU Leuven Towards SHA-3

Brian LaMacchia Agenda Guest lecture: Christian Rechberger, KU Leuven Towards SHA-3

Winter 2011 Josh Benaloh Brian LaMacchia Agenda Guest lecture: Christian Rechberger, KU Leuven Towards SHA-3 Message-based protocols S/MIME XMLDSIG & XMLENC IPsec (depending on time) Design Charrette Part II

984 views • 75 slides
Brian LaMacchia Agenda Integrity Checking (HMAC redux) Protocols (Part 1 Session-based

Brian LaMacchia Agenda Integrity Checking (HMAC redux) Protocols (Part 1 Session-based

Winter 2011 Josh Benaloh Brian LaMacchia Agenda Integrity Checking (HMAC redux) Protocols (Part 1 Session-based protocols) Introduction Kerberos SSL/TLS Certificates and Public Key Infrastructure (PKI) Certificates

1.81k views • 135 slides
Supersingular Isogeny Key Encapsulation Reza Azarderakhsh, Matthew Campagna, Craig Costello, Luca

Supersingular Isogeny Key Encapsulation Reza Azarderakhsh, Matthew Campagna, Craig Costello, Luca

Supersingular Isogeny Key Encapsulation Reza Azarderakhsh, Matthew Campagna, Craig Costello, Luca De Feo, Basil Hess, Brian Koziel, Brian LaMacchia, Patrick Longa, Michael Naehrig, Joost Renes, Vladimir Soukharev November 14 ECC 2017 Nijmegen,

769 views • 75 slides
Todays agenda Brian Reed Water, Engineering and Development Centre Todays agenda

Todays agenda Brian Reed Water, Engineering and Development Centre Todays agenda

Todays agenda Brian Reed Water, Engineering and Development Centre Todays agenda Institutional policy and Evaluation strategy Initial Validation study Analysis Delivery Design Knowledge EKIMEEZA International WATER

871 views • 44 slides
2018 SMALL BEGINNINGS BIG VISION AGENDA Brian Joffe - CEO Welcome and introduction Peter

2018 SMALL BEGINNINGS BIG VISION AGENDA Brian Joffe - CEO Welcome and introduction Peter

LONG4LIFE LIMITED RESULTS PRESENTATION PERIOD ENDED 28 FEBRUARY 2018 SMALL BEGINNINGS BIG VISION AGENDA Brian Joffe - CEO Welcome and introduction Peter Riskowitz - CFO Results overview Brian Joffe - CEO Progress The future

590 views • 28 slides
PRESENTATION 2019 AGENDA Brian Joffe Group CEO Overview and year in review

PRESENTATION 2019 AGENDA Brian Joffe Group CEO Overview and year in review

Long4Life Limited ANNUAL RESULTS PRESENTATION 2019 AGENDA Brian Joffe Group CEO Overview and year in review Mireille Levenstein CFO Financial analysis Brian Joffe Group CEO Operational analysis - Sport and

629 views • 43 slides
Smoke in Urban Areas FEMTC 2016 Nov 16-18 2016 Brian Lee Brian.lee@snclavalin.com

Smoke in Urban Areas FEMTC 2016 Nov 16-18 2016 Brian Lee Brian.lee@snclavalin.com

Smoke Dispersion Modelling of Exhausted Tunnel Fire Smoke in Urban Areas FEMTC 2016 Nov 16-18 2016 Brian Lee Brian.lee@snclavalin.com Vancouver, Canada Tunnel Ventilation Engineer Agenda TVS Overview SDA Modelling

514 views • 27 slides
and Customization Brian Laird, Implementation Manager OmniUpdate Agenda Background: OU

and Customization Brian Laird, Implementation Manager OmniUpdate Agenda Background: OU

Page Template Creation and Customization Brian Laird, Implementation Manager OmniUpdate Agenda Background: OU Campus as a System What is a template? Page Tagging for Editable Regions New Page Forms Agenda

636 views • 50 slides
OUR FIRST SIX MONTHS A GOOD BEGINNING Presented by Brian Joffe, CEO AGENDA Introducing

OUR FIRST SIX MONTHS A GOOD BEGINNING Presented by Brian Joffe, CEO AGENDA Introducing

OUR FIRST SIX MONTHS A GOOD BEGINNING Presented by Brian Joffe, CEO AGENDA Introducing Long4Life JSE Listing Business philosophy Asset ownership criteria Preferred business sectors Progress so far on acquiring assets Sorbet, Holdsport

436 views • 17 slides
May 10, 2013 Samira Monshi Seungwon Noh Wilfredo Rodezno Brian Skelly Agenda Project

May 10, 2013 Samira Monshi Seungwon Noh Wilfredo Rodezno Brian Skelly Agenda Project

May 10, 2013 Samira Monshi Seungwon Noh Wilfredo Rodezno Brian Skelly Agenda Project Overview Background on Alternative Jet Fuel Problem Description and Scope Technical Approach Analysis and Results Conclusion,

751 views • 44 slides
IT SECURITY FOR LIBRARIES PART 1: SECURING YOUR LIBRARY BRIAN PICHMAN | EVOLVE PROJECT AGENDA

IT SECURITY FOR LIBRARIES PART 1: SECURING YOUR LIBRARY BRIAN PICHMAN | EVOLVE PROJECT AGENDA

IT SECURITY FOR LIBRARIES PART 1: SECURING YOUR LIBRARY BRIAN PICHMAN | EVOLVE PROJECT AGENDA A high level overview of what to implement in your library to make it secure. With the rise of data breaches, identity theft, malicious hacking,

1.03k views • 49 slides
AntiPhish Project Presentation Brian Witten December 2006 December 18 th 2006 Agenda Agenda 1.

AntiPhish Project Presentation Brian Witten December 2006 December 18 th 2006 Agenda Agenda 1.

AntiPhish Project Presentation Brian Witten December 2006 December 18 th 2006 Agenda Agenda 1. Work Package 2 Requirements and Specification 2. Work Package 1 Data Generation and Dissemination 3. Work Package 5 Message

582 views • 18 slides
mod_cluster A new httpd-based load balancer Brian Stansberry JBoss, a division of Red Hat

mod_cluster A new httpd-based load balancer Brian Stansberry JBoss, a division of Red Hat

mod_cluster A new httpd-based load balancer Brian Stansberry JBoss, a division of Red Hat Agenda Who is Brian Stansberry? Principal Software Engineer at Red Hat Technical Lead for JBoss Application Server Clustering Part of

528 views • 18 slides
Gaston-Cleveland-Lincoln MPO CTP Meeting Brian Wert, P.E. December 10, 2014 Agenda Project

Gaston-Cleveland-Lincoln MPO CTP Meeting Brian Wert, P.E. December 10, 2014 Agenda Project

Gaston-Cleveland-Lincoln MPO CTP Meeting Brian Wert, P.E. December 10, 2014 Agenda Project progress to date STIP review Survey analysis Vision statement implications Alternatives analysis preparation Next steps

235 views • 21 slides
Support for a Children and Families Agenda January 24, 2016 Celinda Lake Brian Nienaber Lake

Support for a Children and Families Agenda January 24, 2016 Celinda Lake Brian Nienaber Lake

Support for a Children and Families Agenda January 24, 2016 Celinda Lake Brian Nienaber Lake Research Partners Washington, DC | Berkeley, CA | New York, NY LakeResearch.com 202.776.9066 Methodology Election Eve Omnibus Survey Lake

298 views • 27 slides
FY20 Half Year results 10 December 2019 26 weeks ended 27 October 2019 Agenda CEO update Brian

FY20 Half Year results 10 December 2019 26 weeks ended 27 October 2019 Agenda CEO update Brian

FY20 Half Year results 10 December 2019 26 weeks ended 27 October 2019 Agenda CEO update Brian Duffy, CEO FY20 H1 financial results and FY20 full year outlook Anders Romberg, CFO Operational review, summary and outlook Brian Duffy, CEO

1.15k views • 73 slides
Integrating Dynamic Thermal Via Planning With 3D Floorplanning Zhuoyuan Li, Xianlong Hong, Qiang

Integrating Dynamic Thermal Via Planning With 3D Floorplanning Zhuoyuan Li, Xianlong Hong, Qiang

Integrating Dynamic Thermal Via Planning With 3D Floorplanning Zhuoyuan Li, Xianlong Hong, Qiang Zhou, Shan Zeng, Jinian Bian EDA Lab, CS Dept, Tsinghua University Hannah Yang, Vijay Pitchumani, Strategic CAD lab, Intel Corporation Chung-Kuan

583 views • 18 slides
Contents Landmarks Fitting Observed Landmarks in 2D Image Fitting Observed Image 1

Contents Landmarks Fitting Observed Landmarks in 2D Image Fitting Observed Image 1

28.06.2018 > DEPARTMENT OF MATHEMATICS AND COMPUTER SCIENCE GRAVIS2018 BASEL 2D Face Image Analysis Probabilistic Morphable Model Fitting Basel2018 University of Basel 1 > DEPARTMENT OF MATHEMATICS AND COMPUTER SCIENCE GRAVIS2018

600 views • 25 slides
SCEFI I & II - Vision, Concept and Progress Briefing for SFS July 2001 SCEFI I - Steering

SCEFI I & II - Vision, Concept and Progress Briefing for SFS July 2001 SCEFI I - Steering

SCEFI I & II - Vision, Concept and Progress Briefing for SFS July 2001 SCEFI I - Steering Committee for the Enhancement of Financial Infrastructure Study ways to enhance Hong Kongs competitiveness as an IFC Chaired by the

788 views • 47 slides
Software Architectural Aspects of Contemporary Computing Platforms Prabhakar T.V. Department of

Software Architectural Aspects of Contemporary Computing Platforms Prabhakar T.V. Department of

Software Architectural Aspects of Contemporary Computing Platforms Prabhakar T.V. Department of Computer Science & Engineering Indian Institute of Technology Kanpur India tvp@iitk.ac.in Contemporary Computing Platform We will look at

650 views • 44 slides
Topological Mechanical Metamaterials Sebastian Huber Nature Materials (2018) Nature (2018)

Topological Mechanical Metamaterials Sebastian Huber Nature Materials (2018) Nature (2018)

Topological Mechanical Metamaterials Sebastian Huber Nature Materials (2018) Nature (2018) Nature Physics (2016) | | Sebastian Huber Condensed matter theory and quantum optics 1 A mechanical metamaterial: tailoring the phonons to

925 views • 41 slides
On a Class of Genetic Genealogical Tree Models P. DEL MORAL Lab. J.A. Dieudonn e, Univ. Nice

On a Class of Genetic Genealogical Tree Models P. DEL MORAL Lab. J.A. Dieudonn e, Univ. Nice

Numerical and Stochastic Models, Paris Oct. 2006 On a Class of Genetic Genealogical Tree Models P. DEL MORAL Lab. J.A. Dieudonn e, Univ. Nice Sophia Antipolis, France F-K Formulae, Genealogical and IPS , Springer (2004) + References

559 views • 25 slides
Linguistics 101 Theoretical Syntax Theoretical Syntax When constructing sentences, our brains

Linguistics 101 Theoretical Syntax Theoretical Syntax When constructing sentences, our brains

Linguistics 101 Theoretical Syntax Theoretical Syntax When constructing sentences, our brains do a lot of work behind the scenes. Syntactic theories attempt to discover these hidden processes. While languages differ a lot on the

817 views • 32 slides
PPPoE and Linux By David F. Skoll Roaring Penguin Software Inc. 2 February, 2000

PPPoE and Linux By David F. Skoll Roaring Penguin Software Inc. 2 February, 2000

PPPoE and Linux By David F. Skoll Roaring Penguin Software Inc. 2 February, 2000 http://www.roaringpenguin.com dfs@roaringpenguin.com PPPoE and Linux: Overview " TCP/IP Networking Basics " PPP Basics " PPPoE described "

703 views • 34 slides

More recommend