Waltzing the Bear, or: A Trusted Virtual Security Module

Ronald Tögl; Florian Reimair; Martin Pirker

doi:10.1007/978-3-642-40012-4_10

Waltzing the Bear, or: A Trusted Virtual Security Module

Ronald Tögl, Florian Reimair, Martin Pirker

Institute of Information Security (7050)

Publikation: Beitrag in Buch/Bericht/Konferenzband › Beitrag in einem Konferenzband › Begutachtung

Abstract

Cryptographic key material needs to be protected. Currently, this is achieved by either pure software based solutions or by more expensive dedicated hardware security modules. We present a practical architecture to project the security provided by the Trusted Platform Module and Intel Trusted eXecution Technology on a virtual security module.

Our approach uses commodity personal computer hardware to offer integrity protection and strong isolation to a security module which implements a compact security API that has been fully verified. Performance results suggest that our approach offers an attractive balance between speed, security and cost.

Originalsprache	englisch
Titel	Public Key Infrastructures, Services and Applications
Untertitel	9th European Workshop, EuroPKI 2012, Pisa, Italy, September 13-14, 2012, Revised Selected Papers
Erscheinungsort	Berlin; Heidelberg
Herausgeber (Verlag)	Springer Verlag
Seiten	145-160
ISBN (Print)	978-3-642-40011-7
DOIs	https://doi.org/10.1007/978-3-642-40012-4_10
Publikationsstatus	Veröffentlicht - 2012
Veranstaltung	European PKI Workshop: Research and Applications - Pisa, Italien Dauer: 13 Sept. 2012 → 14 Sept. 2012

Publikationsreihe

Name	Lecture Notes in Computer Science
Herausgeber (Verlag)	Springer Verlag
Band	7868

Konferenz

Konferenz	European PKI Workshop: Research and Applications
Land/Gebiet	Italien
Ort	Pisa
Zeitraum	13/09/12 → 14/09/12

Fields of Expertise

Information, Communication & Computing

Treatment code (Nähere Zuordnung)

Application

Zugriff auf Dokument

10.1007/978-3-642-40012-4_10

paper.pdfEndgültige, publizierte Fassung, 893 KB

EU - SEPIA - Secure, Embedded Platform with advanced Process Isolation and Anonymity Capabilities
Winter, J. (Teilnehmer (Co-Investigator)), Dietrich, K. (Teilnehmer (Co-Investigator)), Pirker, M. (Teilnehmer (Co-Investigator)), Hein, D. (Teilnehmer (Co-Investigator)), Bloem, R. (Teilnehmer (Co-Investigator)), Tögl, R. (Teilnehmer (Co-Investigator)) & Podesser, S. (Teilnehmer (Co-Investigator))
1/06/10 → 31/05/13
Projekt: Forschungsprojekt
acTVsM! - Advanced Cryptographic Trusted Virtual Security Module
Tögl, R. (Teilnehmer (Co-Investigator)), Pirker, M. (Teilnehmer (Co-Investigator)), Niederl, A. (Teilnehmer (Co-Investigator)) & Bloem, R. (Projektleiter (Principal Investigator))
1/04/09 → 31/03/11
Projekt: Forschungsprojekt
Trusted Computing
Niederl, A. (Teilnehmer (Co-Investigator)), Lipp, P. (Teilnehmer (Co-Investigator)), Hein, D. (Teilnehmer (Co-Investigator)), Vejda, T. (Teilnehmer (Co-Investigator)), Podesser, S. (Teilnehmer (Co-Investigator)), Tögl, R. (Teilnehmer (Co-Investigator)), Dietrich, K. (Teilnehmer (Co-Investigator)), Bratko, H. (Teilnehmer (Co-Investigator)), Winter, J. (Teilnehmer (Co-Investigator)) & Pirker, M. (Teilnehmer (Co-Investigator))
1/10/05 → 15/07/19
Projekt: Arbeitsgebiet

Dieses zitieren

Tögl, R., Reimair, F., & Pirker, M. (2012). Waltzing the Bear, or: A Trusted Virtual Security Module. in Public Key Infrastructures, Services and Applications: 9th European Workshop, EuroPKI 2012, Pisa, Italy, September 13-14, 2012, Revised Selected Papers (S. 145-160). (Lecture Notes in Computer Science; Band 7868). Springer Verlag. https://doi.org/10.1007/978-3-642-40012-4_10

Waltzing the Bear, or: A Trusted Virtual Security Module. / Tögl, Ronald; Reimair, Florian; Pirker, Martin.
Public Key Infrastructures, Services and Applications: 9th European Workshop, EuroPKI 2012, Pisa, Italy, September 13-14, 2012, Revised Selected Papers. Berlin; Heidelberg: Springer Verlag, 2012. S. 145-160 (Lecture Notes in Computer Science; Band 7868).

Publikation: Beitrag in Buch/Bericht/Konferenzband › Beitrag in einem Konferenzband › Begutachtung

Tögl, R, Reimair, F & Pirker, M 2012, Waltzing the Bear, or: A Trusted Virtual Security Module. in Public Key Infrastructures, Services and Applications: 9th European Workshop, EuroPKI 2012, Pisa, Italy, September 13-14, 2012, Revised Selected Papers. Lecture Notes in Computer Science, Bd. 7868, Springer Verlag, Berlin; Heidelberg, S. 145-160, European PKI Workshop: Research and Applications, Pisa, Italien, 13/09/12. https://doi.org/10.1007/978-3-642-40012-4_10

@inproceedings{ac2b13194ae3407eb1121d6604439751,

title = "Waltzing the Bear, or: A Trusted Virtual Security Module",

abstract = "Cryptographic key material needs to be protected. Currently, this is achieved by either pure software based solutions or by more expensive dedicated hardware security modules. We present a practical architecture to project the security provided by the Trusted Platform Module and Intel Trusted eXecution Technology on a virtual security module.Our approach uses commodity personal computer hardware to offer integrity protection and strong isolation to a security module which implements a compact security API that has been fully verified. Performance results suggest that our approach offers an attractive balance between speed, security and cost.",

author = "Ronald T{\"o}gl and Florian Reimair and Martin Pirker",

year = "2012",

doi = "10.1007/978-3-642-40012-4_10",

language = "English",

isbn = "978-3-642-40011-7",

series = "Lecture Notes in Computer Science",

publisher = "Springer Verlag",

pages = "145--160",

booktitle = "Public Key Infrastructures, Services and Applications",

address = "Germany",

note = "European PKI Workshop: Research and Applications ; Conference date: 13-09-2012 Through 14-09-2012",

}

TY - GEN

T1 - Waltzing the Bear, or: A Trusted Virtual Security Module

AU - Tögl, Ronald

AU - Reimair, Florian

AU - Pirker, Martin

PY - 2012

Y1 - 2012

N2 - Cryptographic key material needs to be protected. Currently, this is achieved by either pure software based solutions or by more expensive dedicated hardware security modules. We present a practical architecture to project the security provided by the Trusted Platform Module and Intel Trusted eXecution Technology on a virtual security module.Our approach uses commodity personal computer hardware to offer integrity protection and strong isolation to a security module which implements a compact security API that has been fully verified. Performance results suggest that our approach offers an attractive balance between speed, security and cost.

AB - Cryptographic key material needs to be protected. Currently, this is achieved by either pure software based solutions or by more expensive dedicated hardware security modules. We present a practical architecture to project the security provided by the Trusted Platform Module and Intel Trusted eXecution Technology on a virtual security module.Our approach uses commodity personal computer hardware to offer integrity protection and strong isolation to a security module which implements a compact security API that has been fully verified. Performance results suggest that our approach offers an attractive balance between speed, security and cost.

U2 - 10.1007/978-3-642-40012-4_10

DO - 10.1007/978-3-642-40012-4_10

M3 - Conference paper

SN - 978-3-642-40011-7

T3 - Lecture Notes in Computer Science

SP - 145

EP - 160

BT - Public Key Infrastructures, Services and Applications

PB - Springer Verlag

CY - Berlin; Heidelberg

T2 - European PKI Workshop: Research and Applications

Y2 - 13 September 2012 through 14 September 2012

ER -

Waltzing the Bear, or: A Trusted Virtual Security Module

Abstract

Publikationsreihe

Konferenz

Fields of Expertise

Treatment code (Nähere Zuordnung)

Zugriff auf Dokument

Fingerprint

Projekte

EU - SEPIA - Secure, Embedded Platform with advanced Process Isolation and Anonymity Capabilities

acTVsM! - Advanced Cryptographic Trusted Virtual Security Module

Trusted Computing

Dieses zitieren