Advanced Remote Firmware Upgrades Using TPM 2.0

Abstract : A central aspect for securing connected embedded systems are remote firmware upgrades to deal with vulnerabilities discovered after deployment. In many scenarios, Hardware Security Modules such as the Trusted Computing Group’s Trusted Platform Module (TPM) 2.0 are used as a security-anchor in embedded systems. In this paper, we discuss the benefits of TPM 2.0 for securing embedded systems and present a concept for advanced remote firmware upgrade of an embedded system with enforcement of Intellectual Property Rights and Privacy protection of device-resident data (i.e., data that remains on the device during the flashing process). This concept utilizes unique features of TPM 2.0. Furthermore, a prototypical implementation using a hardware TPM 2.0 and the TPM Software Stack 2.0 low-level System API is presented as a proof-of-concept.
Type de document :
Communication dans un congrès
Jaap-Henk Hoepman; Stefan Katzenbeisser. 31st IFIP International Information Security and Privacy Conference (SEC), May 2016, Ghent, Belgium. IFIP Advances in Information and Communication Technology, AICT-471, pp.276-289, 2016, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-319-33630-5_19〉
Liste complète des métadonnées

Littérature citée [8 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01369561
Contributeur : Hal Ifip <>
Soumis le : mercredi 21 septembre 2016 - 10:57:18
Dernière modification le : mercredi 21 septembre 2016 - 11:18:49
Document(s) archivé(s) le : jeudi 22 décembre 2016 - 12:59:28

Fichier

 Accès restreint
Fichier visible le : 2019-01-01

Connectez-vous pour demander l'accès au fichier

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Andreas Fuchs, Christoph Krauß, Jürgen Repp. Advanced Remote Firmware Upgrades Using TPM 2.0. Jaap-Henk Hoepman; Stefan Katzenbeisser. 31st IFIP International Information Security and Privacy Conference (SEC), May 2016, Ghent, Belgium. IFIP Advances in Information and Communication Technology, AICT-471, pp.276-289, 2016, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-319-33630-5_19〉. 〈hal-01369561〉

Partager

Métriques

Consultations de la notice

133