Patent
Software-based trusted platform module
Stefan Thom,Jeremiah Cox,David J. Linsley,Magnus Nystrom,Himanshu Raj,David Robinson,Stefan Saroiu,Rob Spiger,Alastair Wolman +8 more
- 11 Feb 2013
8
TL;DR: In this paper, the authors propose a "firmware-based TPM" to ensure that secure code execution is isolated to prevent a wide variety of potential security breaches without the use of dedicated security processor hardware or silicon.
read more
Abstract: A “Firmware-Based TPM” or “fTPM” ensures that secure code execution is isolated to prevent a wide variety of potential security breaches. Unlike a conventional hardware based Trusted Platform Module (TPM), isolation is achieved without the use of dedicated security processor hardware or silicon. In general, the fTPM is first instantiated in a pre-OS boot environment by reading the fTPM from system firmware or firmware accessible memory or storage and placed into read-only protected memory of the device. Once instantiated, the fTPM enables execution isolation for ensuring secure code execution. More specifically, the fTPM is placed into protected read-only memory to enable the device to use hardware such as the ARM® architecture's TrustZone™ extensions and security primitives (or similar processor architectures), and thus the devices based on such architectures, to provide secure execution isolation within a “firmware-based TPM” without requiring hardware modifications to existing devices.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
Patent
Method for constructing STPM of android system
Zhao Bo,Fei Yongkang,Xiang Shuang,Ji Xiangmin +3 more
- 22 Jan 2014
Abstract: The invention discloses a method for constructing an STPM of an android system. According to the dependable computing conception, on the basis that an existing handheld device hardware architecture is not changed, the TPM technology idea and the divide-and-conquer conception are adopted, and the functions of dependable storage, dependable measurement, three-layer key management and the like of the STPM are respectively achieved in the android system; the STPM is constructed to provide a basis for secondary safe development on mobile devices, and on the basis, developers can further achieve the development of various safety functions such as safe start of the system, measurement on start of upper-layer application programs and protection on private data of users. The method provides the basis for system safety of the mobile devices and privacy of the private data of the users from the bottom layer of the system. The method mainly has the advantage that the construction of the STPM overcomes the defect that the existing mobile devices lack a TPM and provides the basis for safe development of the mobile devices.
7
Patent
Electronic device identification
Jonathan Dunne,Liam Harpur,Matthew Francis Rutkowski +2 more
- 21 Sep 2016
TL;DR: In this article, a method of generating an identifier for an electronic device, wherein the electronic device includes a processor and a memory, is described, and the memory is communicatively coupled to the processor and includes a plurality of memory locations.
4
Patent
Secure non-volatile random access memory
Samer El-Haj-mahmoud,Haskell Darrell R,Kevin G. Depew +2 more
- 13 Aug 2014
TL;DR: In this article, a secure non-volatile random access memory (SNA) was proposed for NVRAMs, where a lock password may be retrieved from a system management mode memory.
1
References
Patent
Method and system to support a trusted set of operational environments using emulated trusted hardware
Gundrala D. Goud,Vincent J. Zimmer +1 more
- 23 Dec 2003
TL;DR: In this article, a method and system to emulate a trusted platform module to execute trusted operations is presented, where an operating system is loaded into the virtual machine session and the trusted platform is emulated to hold a key associated with the virtual session.
146
Patent
Technique for supporting multiple secure enclaves
Simon P. Johnson,Uday R. Savagaonkar,Vincent R. Scarlata,Francis X. McKeen,Carlos V. Rozas +4 more
- 02 Dec 2011
TL;DR: Secure enclaves as discussed by the authors is a technique to enable secure application and data integrity within a computer system, in which one or more secure enclaves are established in which an application or data may be stored and executed.
142
Patent
Providing a secure execution mode in a pre-boot environment
Vincent J. Zimmer,Bryant Bigbee,Andrew J. Fish,Mark S. Doran +3 more
- 20 Oct 2003
TL;DR: In this paper, the authors present a method to establish a secure pre-boot environment in a computer system; and perform at least one secure operation in the secure environment; and the secure operation may be storage of a secret in the security preboot environment.
78
Patent
Methods and apparatus for secure collection and display of user interface information in a pre-boot environment
Vincent J. Zimmer,Michael A. Rothman +1 more
- 25 Jun 2003
TL;DR: In this article, the authors describe a pre-boot environment in which user interface information can be stored in the secure area of memory of a processor and the processor can directly access an area that normally cannot be accessed.
74
Patent
Method and apparatus for sequential hypervisor invocation
Vincent J. Zimmer,Jiewen Yao +1 more
- 31 Mar 2008
TL;DR: In this paper, a cache-as-RAM (CAR) based hypervisor, executing directly from Flash memory manages sequential invocation of a next hypervisor on a platform, is described and claimed.
68