Patent
Software-based trusted platform module
Stefan Thom,Jeremiah Cox,David J. Linsley,Magnus Nystrom,Himanshu Raj,David Robinson,Stefan Saroiu,Rob Spiger,Alastair Wolman +8 more
- 11 Feb 2013
8
TL;DR: In this paper, the authors propose a "firmware-based TPM" to ensure that secure code execution is isolated to prevent a wide variety of potential security breaches without the use of dedicated security processor hardware or silicon.
read more
Abstract: A “Firmware-Based TPM” or “fTPM” ensures that secure code execution is isolated to prevent a wide variety of potential security breaches. Unlike a conventional hardware based Trusted Platform Module (TPM), isolation is achieved without the use of dedicated security processor hardware or silicon. In general, the fTPM is first instantiated in a pre-OS boot environment by reading the fTPM from system firmware or firmware accessible memory or storage and placed into read-only protected memory of the device. Once instantiated, the fTPM enables execution isolation for ensuring secure code execution. More specifically, the fTPM is placed into protected read-only memory to enable the device to use hardware such as the ARM® architecture's TrustZone™ extensions and security primitives (or similar processor architectures), and thus the devices based on such architectures, to provide secure execution isolation within a “firmware-based TPM” without requiring hardware modifications to existing devices.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
Patent
Protection scheme for remotely-stored data
Hariprasad Nellitheertha,S Deepak,Thanunathan Rangarajan,Anil S. Keshavamurthy +3 more
- 27 Sep 2013
TL;DR: In this paper, the authors present a protection scheme for remotely-stored data, which includes an encryption service to encrypt or decrypt data received from the at least one VM and a trusted execution environment (TEE).
31
Patent
Methods and apparatus for protecting software from unauthorized copying
Bin Xing,Bo Zhang,Mark W. Shanahan,James D. Beaney +3 more
- 24 Oct 2013
TL;DR: In this article, a processing device provides a method for protecting a program from unauthorized copying by generating a decrypted version of the program in a secure enclave by decrypting the encrypted program in the secure enclave.
16
Patent
Method and apparatus for accessing storage space
Han Peng,Li Hui,Wang Xiaopu +2 more
- 30 Mar 2016
TL;DR: In this article, a method and apparatus for accessing a storage space, so as to improve the storage security of private data on a terminal is presented, which is applied to the terminal configured with the storage space and a running environment of an operating system of the terminal.
16
Patent
Trusted execution environment virtual machine cloning
Mark F. Novak,Andrew J. Layman,Magnus Nystrom,Stefan Thom +3 more
- 01 Aug 2013
TL;DR: In this paper, the authors propose to clone a virtual machine having a trusted executed environment such as a software-based trusted platform module (SBP) by copying the virtual machine state of the source virtual machine to a target virtual machine.
13
Patent
Process security validation
Ronen Bachar,Roee Hay,Erez Rokah,Yoav Shany +3 more
- 22 Dec 2014
TL;DR: In this article, techniques for process security validation are described, which can include detecting, via the processor, that the first idle state of a process transitions to an active state of the process based at least in part on the system activity or the process activity being above the activity threshold.
10
References
Patent
System and method for component authentication of a secure client hosted virtualization in an information handling system
Yuan-Chang Lo,Shree Dandekar +1 more
- 10 May 2011
TL;DR: A client hosted virtualization system (CHVS) as mentioned in this paper includes a processor to execute code, a security processor, a component that includes a certificate, and a non-volatile memory.
64
Patent
Trusted language runtime on a mobile platform
Himanshu Raj,Nuno Santos,Paul England,Stefan Saroiu,Alastair Wolman +4 more
- 24 Jun 2011
TL;DR: A trusted language runtime (TLR) as mentioned in this paper provides abstractions for developing a runtime for executing trusted applications or portions thereof securely on a mobile device (e.g., a smartphone).
58
Patent
Method for extending the CRTM in a trusted platform
Steven A. Bade,Ronald Perez,Leendert van Doorn,Helmut H. Weber +3 more
- 31 Mar 2008
TL;DR: In this article, a method, system and computer program product for enhancing the functionality of the existing core root of trust measurement (CRTM) is presented, which is extended to allow platform manufacturer controlled and certified code to be incorporated into the function of the CRTM, wherein the manufacturer may define the policy for accepting a new function into CRTM.
55
Patent
System and method to support platform firmware as a trusted process
Vincent J. Zimmer,Willard M. Wiseman,Jing Li +2 more
- 25 Feb 2004
TL;DR: In this paper, the authors propose a system and method to support platform firmware as a trusted process. But, the use of locality prevents unqualified users (i.e., software) from accessing data stored by trusted firmware.
45
Patent
Tamper-aware virtual TPM
Jean-Pierre Seifert,Ryan R. Ware +1 more
- 30 Jun 2005
TL;DR: In this paper, a tamper-aware virtual trusted platform module (TPM) is implemented on a host processor and various actions can be taken in view of one or more predefined security policies, such as logging the event, shutting down the platform and/or informing a remote management entity.
31