combining trusted computing and smart cards for
play

Combining Trusted Computing and Smart Cards for Trustworthy VPN - PowerPoint PPT Presentation

Dec 02, 2022 •377 likes •763 views

Combining Trusted Computing and Smart Cards for Trustworthy VPN Access Bachelor Thesis - Final Presentation Michael Dorner Chair for Network Architectures and Services Department of Computer Science Technical University of Munich 24.04.2013

  1. Combining Trusted Computing and Smart Cards for Trustworthy VPN Access Bachelor Thesis - Final Presentation Michael Dorner Chair for Network Architectures and Services Department of Computer Science Technical University of Munich 24.04.2013 Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 1

  2. Agenda Introduction 1 System design 2 Evaluation 3 Conclusion 4 Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 2

  3. The Real World Problem “Chinese hackers believed to have government links have been conducting wide-ranging electronic surveillance of [US] media companies..” - Wall Street Journal (31.01.2013) “Facebook hacked in ’sophisticated attack”’ - The Guardian (16.02.2013) “Microsoft hacked by same cyberattack as Apple and Facebook” - The Telegraph (23.02.2013) Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 3

  4. Technical Issue Computer security mechanisms not tightly integrated, but applied on top of the OS → fairly easy to circumvent once in control of the Host Networks not designed to support containment of an infection Approach: link host- and network-security Requires integrity-defining state to be created in a secure and attestable to make it usable for access decisions Lying endpoint problem: hosts may lie about their actual state to manipulate the access decision Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 4

  5. Trusted Platform Module Used to counter lying endpoint problem Local deputy - hardware security module with passive host-independent capabilities Provides protected state storage (PCR) and capabilities Protected capabilities include attestation (cryptographic proof) of protected storage contents to remote parties Core Root of Trust for Measurement(CRTM): protected TPM storage used to store state measurements from the very first boot stage, the trusted CRTM (not part of the TPM) Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 5

  6. Integrity measurements: Chain of Trust Userspace TPM Applications Kernel: IMA Stage 2 Stage1.5 Store Measurments Stage 1: MBR BIOS Measure, then Load CRTM Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 6 Figure: Chain of Trust

  7. Integrity Measurement Architecture - IMA Kernel-module, Relies on CRTM-functionality Continues chain of trust after kernel has been loaded - what is measured is defined by policy Creates Integrity Measurement List (IML), which stores these measurements Integrity of the list protected by check-value (hash) in protected TPM-storage Allows attestation of the measurement list Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 7

  8. State of the Art: Secure Boot States of a host during boot are predefined Deviation will force the host to stop booting, since subsequent stages cannot be loaded Authenticating parties make implicit assumption that any booted host is clean Compatible with post-boot techniques like IMA Problem: no attestable state may be abused to lock users out (DoS) needs additional post-boot techniques to continue protection can place serious restrictions on the systems that can be booted Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 8

  9. State of the Art 2: TNC Trusted Network Connect: AAA-server queries state of a host, tracks and evaluates it Access point queries TNC-server via EAP Access decision based on EAP-response Problems: centralized → vulnerable to DoS may violate privacy implicitly demands integrity of the AAA-server Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 9

  10. Proposal: Smart card based Solution Attestation from the host to a smart card, which acts as local trustworthy verifier Smart card checks integrity-state, certifies it with a token, if acceptable Host presents token to Authenticating Party Authenticating Party checks token against policy, makes access decision Goal: decentralized, privacy conserving, inherently secure Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 10

  11. Smart Cards Functionality ranges from simple key storage to execution capabilities Strong hardware-protection and full security-evaluation possible due to simplicity of the card JavaCard: Implements reduced set of Java on smart cards JavaCard connected extends classic JavaCards with networking(HTTP/HTTPS) Connected cards have more powerful hardware Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 11

  12. Access to a Company-VPN Access Point (VPN-AP) must enforce that only “clean” hosts can join Clean: policy defined set of states, which are considered to represent a trustworthy host Host is the personal device of an organization member, which accesses the VPN over an untrusted network Host attests state to a smart card, obtains token, presents token to VPN-AP Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 12

  13. Next 1 Introduction 2 System design 3 Evaluation Conclusion 4 Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 13

  14. System Requirements R1: Strong proof of integrity and strong authentication R2: System must be fast enough to be used in connection-establishment (comparable to regular IKE) R3: Allow for access decision based on host security R4: Preserve user privacy and general freedom to execute arbitrary code Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 14

  15. Topology of the proposed solution AIK TPM SC-ID TA Smart Card Linux Host with IMA Authenticating Party Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 15 Figure: System Topology of the central entities

  16. Host State Attestation and Evaluation Host TPM SC Initiate Connection Attestation Accept, Nonce Card GetAttestation(Check-Value, Nonce) Sig AIK (Check-Value, Nonce) Transmit Attestation Verify Attestation IMA Request IML Transmit IML Verify IML-entries Verify IML Create Token Return Token Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 16 Figure: Verification Process of a Platform Verification Certificate (PVC)

  17. Host State Verification (details) Card has a database of known good hashes (whitelist, KGDB) Lookup entry in the database; if matching extend entry into own check v Repeat until no more values are received or built-in limit is reached (usually limited by whitelist-size) Compare final check value to attested check value If matching, state verification successful, otherwise state undefined Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 17

  18. Platform Verification Certificate (PVC) Attestation Attestation Type Database Version Timestamp Version Smart card ID-key pub Host AIK pub Token Authority Signature Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 18 Figure: Platform Verification Certificate (PVC)

  19. Modified IKE with PVC-integration Host TPM SC AP HDR, KE Host , SA Host , Nonce Host HDR, KE AP , SA AP , Nonce AP , PVCREQ StoreToPCR(AUTH-Info) RequestAttestation(Nonce AP ) Sig AIK (AUTH-Info, Nonce AP ) SigningRequest(Attestation) Sig SC-ID (Attestation, Timestamp SC ), Timestamp SC PVCAUTH = Attestation, Sig SC-ID , Timestamp HDR, SK(ID Host , PVC, [CERTREQ/PVCREQ], [ID AP ], PVCAUTH, SA Host2 , TS Host , TS AP ) Verify PVCAUTH HDR, SK(IDHost, [PVC/CERT], [PVC]AUTH, SA AP2 , TS Host , TS AP ) Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 19 Figure: Verification Process of a Platform Verification Certificate (PVC)

  20. PVC Evaluation at the Access Point Verify the PVC’s integrity and origin (i.e. check signature) Make sure the PVC and the identities in the PVC are valid i.e. deal with revocation Policy check : attestation type, version and database allowed for this user(SC-ID) and platform(AIK)? Verify PVCAUTH: challenged party is in control of the platform and identity in the PVC Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 20

  21. Technical Limitations Trusted Software Stacks (TrouSerS, jTSS) do not support all operations correctly yet Communicating TPM-information to platforms without TSS (e.g. JavaCards) is hard to implement Java card connected not available yet, prototype not usable Simulator and card-proxy used to simulate JavaCard Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 21

  22. Next 1 Introduction 2 System design 3 Evaluation Conclusion 4 Michael Dorner (TU Munich) Combining Trusted Computing and Smart Cards for Trustworthy VPN Access 22

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Privacy-Enhanced Bi-Directional Communication in the Smart Grid using Trusted Computing Andrew

Privacy-Enhanced Bi-Directional Communication in the Smart Grid using Trusted Computing Andrew

Privacy-Enhanced Bi-Directional Communication in the Smart Grid using Trusted Computing Andrew Paverd, Andrew Martin, Ian Brown University of Oxford https://www.cs.ox.ac.uk/people/andrew.paverd/tre Smart Grid Architecture NIST Model Smart

538 views • 27 slides
Smart Cards Carrying certificates around How do you use your [digital] identity? Install your

Smart Cards Carrying certificates around How do you use your [digital] identity? Install your

4/25/08 Smart Cards Carrying certificates around How do you use your [digital] identity? Install your certificate in browser On-computer keychain file Need there be more? 1 4/25/08 Smart cards Smart card Portable device

316 views • 4 slides
Trusted Quality of Products OVERVIEW OF AMBROSUS Combining high-tech sensors, blockchain

Trusted Quality of Products OVERVIEW OF AMBROSUS Combining high-tech sensors, blockchain

Trusted Quality of Products OVERVIEW OF AMBROSUS Combining high-tech sensors, blockchain protocols, and smart contracts, Ambrosus radically improves supply chains and information systems by reliably collecting and recording product information

327 views • 32 slides
ISG Seminar Agenda for Lecture 3 rd November 2011 Evolution of smart cards/RFIDs From Smart

ISG Seminar Agenda for Lecture 3 rd November 2011 Evolution of smart cards/RFIDs From Smart

ISG Seminar Agenda for Lecture 3 rd November 2011 Evolution of smart cards/RFIDs From Smart Cards to NFC Smart Phone Attacks/countermeasures Security Near Field Communication (NFC) Keith Mayes NFC Security Elements

550 views • 8 slides
Chapter 10 Trusted Computing Trusted Computing Chapter 10 and Multilevel Security and

Chapter 10 Trusted Computing Trusted Computing Chapter 10 and Multilevel Security and

Computer S ecurity: Principles and Practice Chapter 10 Trusted Computing Trusted Computing Chapter 10 and Multilevel Security and Multilevel Security First Edition by William S tallings and Lawrie Brown Lecture slides by Lawrie

636 views • 40 slides
Transacted Memory for Smart Cards Pieter Hartel, Univ. Twente, NL Michael Butler, Univ.

Transacted Memory for Smart Cards Pieter Hartel, Univ. Twente, NL Michael Butler, Univ.

Transacted Memory for Smart Cards Pieter Hartel, Univ. Twente, NL Michael Butler, Univ. Southampton, UK Eduard de Jong, Sun Micro systems, USA Mark Longley, Univ. Southampton, UK 1 Overview What is transacted memory? Combining Z,

168 views • 15 slides
Trusted Mobile Platforms: Part 1: An introduction to trusted computing Chris Mitchell Royal

Trusted Mobile Platforms: Part 1: An introduction to trusted computing Chris Mitchell Royal

Trusted Mobile Platforms: Part 1: An introduction to trusted computing Chris Mitchell Royal Holloway, University of London c.mitchell@rhul.ac.uk http://www.isg.rhul.ac.uk/~cjm Contents What is trusted computing? The TCG TCG

1.43k views • 114 slides
Trusted Smart Statistics: What it is Why it comes Where it brings us Fabio Ricciato

Trusted Smart Statistics: What it is Why it comes Where it brings us Fabio Ricciato

Trusted Smart Statistics: What it is Why it comes Where it brings us Fabio Ricciato fabio.ricciato@ec.europa.eu EUROSTAT - Big Data Task Force Smart Statistics 4 Smart Cities Kalamata, Greece, 6.10.2018 The new datafied world The cyber world

574 views • 35 slides
INOSSEM i nsti tut de recherche Guillaume Bouffard (SSD) Vulnerability Analysis on Smart Cards

INOSSEM i nsti tut de recherche Guillaume Bouffard (SSD) Vulnerability Analysis on Smart Cards

Introduction Fault Tree Analysis An API to Mitigate the Undesirable Events Conclusion Vulnerability Analysis on Smart Cards using Fault Tree Guillaume Bouffard Bhagyalekshmy N Thampi Jean-Louis Lanet Smart Secure Devices (SSD) Team

705 views • 39 slides
Terra: A Virtual Machine-Based Platform for Trusted Computing by Garfinkel et al. (Some slides

Terra: A Virtual Machine-Based Platform for Trusted Computing by Garfinkel et al. (Some slides

Terra: A Virtual Machine-Based Platform for Trusted Computing by Garfinkel et al. (Some slides taken from Jason Franklins 712 lecture, Fall 2006) Trusted Computing Hardware What can you do if you have trusted hardware?

315 views • 27 slides
The Cloud in Your Hands Marriage of Cloud Computing with Smart Devices Arjmand Samuel and

The Cloud in Your Hands Marriage of Cloud Computing with Smart Devices Arjmand Samuel and

The Cloud in Your Hands Marriage of Cloud Computing with Smart Devices Arjmand Samuel and Danny Dalal Microsoft Research David B. Johnson Moderator ACM Learning Center ( http: / / learning.acm.org ) 1,200 trusted technical books and

595 views • 18 slides
SYSTEM SECURITY III: TRUSTED COMPUTING TDDD17 Informationsskerhet Ben Smeets Ericsson

SYSTEM SECURITY III: TRUSTED COMPUTING TDDD17 Informationsskerhet Ben Smeets Ericsson

SYSTEM SECURITY III: TRUSTED COMPUTING TDDD17 Informationsskerhet Ben Smeets Ericsson Research Security / Lund University 1 2020-02-28 B. Smeets LiTH course Goal of this lecture Understand trusted computing and its purpose Threats

1.42k views • 65 slides
SYSTEM SECURITY III: TRUSTED COMPUTING TDDD17 Informationsskerhet Ben Smeets Ericsson

SYSTEM SECURITY III: TRUSTED COMPUTING TDDD17 Informationsskerhet Ben Smeets Ericsson

SYSTEM SECURITY III: TRUSTED COMPUTING TDDD17 Informationsskerhet Ben Smeets Ericsson Research Security / Lund University 1 2019-03-01 B. Smeets LiTH course Goal of this lecture Understand trusted computing and its purpose Threats

794 views • 66 slides
Introduction to Trusted Computing Pieter Maene , Johannes G otzfried, Ruan de Clercq, Tilo M

Introduction to Trusted Computing Pieter Maene , Johannes G otzfried, Ruan de Clercq, Tilo M

Introduction to Trusted Computing Pieter Maene , Johannes G otzfried, Ruan de Clercq, Tilo M uller, Felix Freiling, and Ingrid Verbauwhede 1 KU Leuven/COSIC, Belgium 2 FAU Erlangen-N urnberg, Germany January 31, 2017 Trusted Computing 2

723 views • 35 slides
Fault enabled viruses against smart cards 1 2 1 Samiya

Fault enabled viruses against smart cards 1 2 1 Samiya

Fault enabled viruses against smart cards 1 2 1 Samiya HAMADOUCHE , Jean-Louis LANET , Mohamed MEZGHICHE 1 LIMOSE Laboratory, University

898 views • 36 slides
Smart Cards Smart Cards a(s) a(s) Safety Critical Systems Safety Critical Systems Gemplus

Smart Cards Smart Cards a(s) a(s) Safety Critical Systems Safety Critical Systems Gemplus

Smart Cards Smart Cards a(s) a(s) Safety Critical Systems Safety Critical Systems Gemplus Labs Gemplus Labs Pierre.Paradinas Paradinas@ @gemplus gemplus.com .com Pierre. Agenda Agenda Smart Card Technologies Smart Card

358 views • 31 slides
System Modelling and Design Modelling a Queue Towards Implementation Revision: 1.6, April 28,

System Modelling and Design Modelling a Queue Towards Implementation Revision: 1.6, April 28,

Outline System Modelling and Design Modelling a Queue Towards Implementation Revision: 1.6, April 28, 2010 Ken Robinson School of Computer Science & Engineering The University of New South Wales, Sydney Australia October 6, 2010 Ken

1.39k views • 111 slides
The Practitioners Perspective Panel discussion by Agustn Carstens General Manager, Bank for

The Practitioners Perspective Panel discussion by Agustn Carstens General Manager, Bank for

The Practitioners Perspective Panel discussion by Agustn Carstens General Manager, Bank for International Settlements The Workshop on Digital Currency Economics and Policy Singapore, 16 November 2018 Money Flower: a TV series 2 The Money

493 views • 8 slides
On-the-Fly Token Similarity Joins in Relational Databases N. Augsten 1 A. Miraglia 2 T. Neumann 3

On-the-Fly Token Similarity Joins in Relational Databases N. Augsten 1 A. Miraglia 2 T. Neumann 3

On-the-Fly Token Similarity Joins in Relational Databases N. Augsten 1 A. Miraglia 2 T. Neumann 3 A. Kemper 3 1 University of Salzburg, Austria nikolaus.augsten@sbg.ac.at 2 VU University Amsterdam, Netherlands a.miraglia@student.vu.nl 3 TU M

1.04k views • 60 slides
Object-Oriented Design No SVN checkout today Analysis Design Software Implementation

Object-Oriented Design No SVN checkout today Analysis Design Software Implementation

Object-Oriented Design No SVN checkout today Analysis Design Software Implementation Development Testing Deployment Maintenance Standardized approaches intended to: Reduce costs Increase predictability of results Examples:

279 views • 26 slides
Fr Front t End Bo Board Requirements, Speci cification and QA/ QA/QC QC Alexander

Fr Front t End Bo Board Requirements, Speci cification and QA/ QA/QC QC Alexander

Fr Front t End Bo Board Requirements, Speci cification and QA/ QA/QC QC Alexander Singovski, L4 FE manager PreFinal Design Review Dec. 12-14, 2018 Alexander Singovski ECAL FE board NSF Pre-FDR

615 views • 30 slides
Data Stream Analysis: a (new) triumph for Analytic Combinatorics Dedicated to the memory of

Data Stream Analysis: a (new) triumph for Analytic Combinatorics Dedicated to the memory of

Data Stream Analysis: a (new) triumph for Analytic Combinatorics Dedicated to the memory of Philippe Flajolet (1948-2011) Conrado Martnez Universitat Politcnica de Catalunya ALEA in Europe Workshop, Vienna (Austria) October 2017 Outline

1.67k views • 150 slides
Blockchain & Money Class 14 November 1, 2018 1 Class 14 Overview Readings and Study

Blockchain & Money Class 14 November 1, 2018 1 Class 14 Overview Readings and Study

Blockchain & Money Class 14 November 1, 2018 1 Class 14 Overview Readings and Study Questions 10 Years and Counting Happy Anniversary Payment Systems and Pain Points Payment System & Blockchain Technology

528 views • 20 slides
CSE 105 THEORY OF COMPUTATION Fall 2016 http://cseweb.ucsd.edu/classes/fa16/cse105-abc/

CSE 105 THEORY OF COMPUTATION Fall 2016 http://cseweb.ucsd.edu/classes/fa16/cse105-abc/

CSE 105 THEORY OF COMPUTATION Fall 2016 http://cseweb.ucsd.edu/classes/fa16/cse105-abc/ Learning goals Introductions Clickers HSS 1330: AB T o change your remote frequency 1. Press and hold power button until fmashing 2. Enter two-letter

649 views • 34 slides

More recommend