Stefan Thom
Microsoft
58 Papers
1K Citations
Stefan Thom is an academic researcher from Microsoft. The author has contributed to research in topics: Trusted Platform Module & Firmware. The author has an hindex of 18, co-authored 58 publications.
Chat about Author
Papers
Patent
Firmware-based trusted platform module for arm processor architectures and trustzone security extensions
Stefan Thom,Jeremiah Cox,David J. Linsley,Magnus Nystrom,Himanshu Raj,David Robinson,Stefan Saroiu,Rob Spiger,Alastair Wolman +8 more
- 29 Jul 2011
TL;DR: In this paper, the authors propose a "firmware-based TPM" to ensure that secure code execution is isolated to prevent a wide variety of potential security breaches without the use of dedicated security processor hardware or silicon.
140
Patent
Systems and methods for securely booting a computer with a trusted processing module
James A. Schwartz,Jamie Hunter,Jonathan D. Schwartz,Ray Kenneth D,Paul England,Russell Humphries,Stefan Thom +6 more
- 19 Dec 2005
TL;DR: In this article, the expected hash value of a boot component is placed into a platform configuration register (PCR), which allows a TPM to unseal a secret, and the secret may then be used to decrypt the boot component.
130
•Proceedings Article
fTPM: A Software-Only Implementation of a {TPM} Chip
Himanshu Raj,Stefan Saroiu,Alec Wolman,Ronald Aigner,Jeremiah Cox,Paul England,Chris Fenner,Kinshuman Kinshumann,Jork Loeser,Dennis Mattoon,Magnus Nystrom,David Robinson,Rob Spiger,Stefan Thom,David R. Wooten +14 more
- 12 Aug 2016
TL;DR: The design and implementation of a firmware-based TPM 2.0 (fTPM) leveraging ARM TrustZone is presented and a set of mechanisms needed for the fTPM that can be useful for building more sophisticated trusted applications beyond just a TPM are described.
Patent
Hardware supported virtualized cryptographic service
David J. Linsley,Stefan Thom +1 more
- 30 Mar 2010
TL;DR: In this article, a Trusted Platform Module (TPM) can be utilized to provide hardware-based protection of cryptographic information utilized within a virtual computing environment and access to the protected data within the virtual environment can only be granted if the virtualized cryptographic service's keys have been protected by TPM-specific keys of the TPM on the computing device that is currently hosting a virtual environment.
52
Dominance as a New Trusted Computing Primitive for the Internet of Things
Meng Xu,Manuel Huber,Zhichuang Sun,Paul England,Marcus Peinado,Sangho Lee,Andrey Marochko,Dennis Mattoon,Rob Spiger,Stefan Thom +9 more
- 19 May 2019
TL;DR: Cider is presented, a system that can recover IoT devices within a short amount of time, even if attackers have taken root control of every device in a large deployment.
44