Better Privacy for Trusted Computing Platforms

机译：可信计算平台的更好隐私

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

The trusted computing group (TCG) specified two protocols that allow a trusted hardware device to remotely convince a communication partner that it is indeed a trusted hardware device. In turn, This enables two communication partners to establish that the other end is a secure computing platform and hence it is safe exchange data. Both these remote identification protocols provide some degree of privacy to users of the platforms. That is, the communication partners can only establish that the other end uses some trusted hardware device but not which particular one. The first protocol achieves this property by involv-ing trusted third party called Privacy CA in each transaction. This party must be fully trusted by all other parties. In practice, however, this is a strong requirement that is hard to fulfill. Therefore, TCG proposed a second protocol called direct anonymous attestation that overcomes this drawback using techniques known from group signature schemes. However, it offers less privacy than the one involving the Privacy CA. The reason for this is that the protocol needs to allow the verifier to detect rogue hardware devices while before this detection was done by the Privacy CA. In this paper we show how to extend the direct anonymous attestation protocols such that if offers the same degree of privacy as the first solution but still allows the verifier to rogue devices.

机译：可信计算组（TCG）指定了两个协议，这些协议允许可信硬件设备远程说服通信伙伴它确实是可信硬件设备。反过来，这使两个通信伙伴可以确定另一端是安全的计算平台，因此可以安全地交换数据。这两种远程识别协议都为平台的用户提供了一定程度的隐私。即，通信伙伴只能确定另一端使用某些受信任的硬件设备，而不能使用哪一个特定的硬件设备。第一个协议通过在每笔交易中涉及称为“隐私CA”的受信任第三方来实现此属性。此方必须得到所有其他方的完全信任。但是，实际上，这是一个很难满足的强烈要求。因此，TCG提出了第二种协议，称为直接匿名证明，该协议使用组签名方案中已知的技术克服了这一缺点。但是，与隐私CA相比，它提供的隐私较少。这样做的原因是，在隐私CA进行检测之前，协议需要允许验证者检测恶意硬件设备。在本文中，我们展示了如何扩展直接匿名证明协议，以便提供与第一个解决方案相同的隐私度，但仍允许验证者对设备进行欺诈。

著录项

来源
《European Symposium on Research in Computer Security(ESORICS 2004); 20040913-15; Sophia Antipolis(FR)》|2004年|P.73-88|共16页
会议地点 Sophia Antipolis(FR)
作者
Jan Camenisch;
展开▼
作者单位

IBM Research, Zurich Research Laboratory, CH-8803 Rueschlikon, Switzerland;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类安全保密;
关键词

相似文献

外文文献
中文文献
专利

1. Trusted Attestation System for Cloud Computing Environment Using Trusted Platform Module [J] . E. Padma, S. Rajalakshmi Internet of Things and Cloud Computing . 2017,第3期

机译：使用可信平台模块的云计算环境可信证明系统
2. Trust Collaboration in P2P Systems Based on Trusted Computing Platform [J] . ZHENG YAN, PENG ZHANG WSEAS Transactions on Information Science and Applications . 2006,第2期

机译：基于可信计算平台的P2P系统中的信任协作
3. On Reliable Platform Configuration Change Reporting Mechanisms for Trusted Computing Enabled Platforms [J] . Kurt Dietrich Journal of Universal Computer Science . 2010,第4期

机译：可信计算支持平台的可靠平台配置更改报告机制
4. A Study of Trust Privacy Models in Pervasive Computing Approach to Trusted Computing Platforms [C] . Hamed Khiabani, Jamalul-Lail Ab Manan, Zailani Mohamed Sidek International Conference for Technical Postgraduates . 2009

机译：信赖与隐私模型对可信计算平台的普遍计算方法
5. Security policy management, threat alleviation and trusted platforms for embedded computing systems. [D] . Anand, Vijay. 2011

机译：嵌入式计算系统的安全策略管理，威胁缓解和受信任的平台。
6. Trust and Privacy: How Patient Trust in Providers is Related to Privacy Behaviors and Attitudes [O] . Bradley E. Iott, Celeste Campos-Castillo, Denise L. Anthony 2019

机译：信任和隐私：提供商对患者的信任与隐私行为和态度如何相关
7. Trusted privacy domains : challenges for trusted computing in privacy-protecting information sharing [O] . Luf6hr Hans, Sadeghi Ahmad-Reza, Vishik Claire, 2009

机译：可信隐私域：隐私保护信息共享中可信计算的挑战
8. Trust and Trusted Computing Platforms [R] . Fisher, D. A., McCune, J. M., Andrews, A. D. 2011

机译：信任和可信计算平台

Better Privacy for Trusted Computing Platforms

摘要

著录项

相似文献

相关主题

期刊订阅