Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Apparatus and methods for performing trusted computing integrity measurement reporting

An integrity, user equipment technology, applied in platform integrity maintenance, computing, computer security devices, etc., can solve problems such as unrealistic use and longer startup time

Inactive Publication Date: 2009-07-01
INTERDIGITAL TECH CORP
View PDF0 Cites 12 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The disadvantage of this approach is that the number of PCRs in the TPM is typically around 16 due to cost and size considerations (the TCG standard does not limit the number of PCRs)
However, since all applications must be verified and loaded during the boot process, the boot time will be longer, making this method impractical
[0021] These methods have serious flaws in terms of limiting the functionality of the trusted platform or loss of user privacy

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Apparatus and methods for performing trusted computing integrity measurement reporting
  • Apparatus and methods for performing trusted computing integrity measurement reporting
  • Apparatus and methods for performing trusted computing integrity measurement reporting

Examples

Experimental program
Comparison scheme
Effect test

Embodiment approach

[0044] According to a second embodiment of the invention, the number of PCRs a system may have is not limited by a fixed size. In practice, however, the number is around 16 PCRs in most embodiments. Scalability as measured by PCR identification numbers (PCR addresses can range from 0 to 2 32 -1, where greater than 2 30 is reserved for later use) can be used to create the concept of virtual PCRs that do not physically exist in the TPM, but are virtual in nature. These virtual PCR contents can be stored as encrypted data on external memory or on the TPM itself. The contents of these dummy PCR values ​​can only be extended from other PCR values. Doing so allows the application to define the ground state in terms of what the PCR values ​​can expand. Preferably, each application is assigned one or more dummy numbers, and the dummy numbers can be used to perform integrity measurements. Doing so allows PCR numbers to be assigned to applications, similar to the process of assigni...

Embodiment

[0076] 1. A method in a computer system including a user device having a trusted platform module (TPM), a platform agent, and a reference base state (RBS) certificate, the method comprising:

[0077] The challenger issues a command to the platform agent to obtain a platform configuration computed from the initial configuration specified by the base state for the loaded application that the challenger is interested in checking for integrity.

[0078] 2. according to the method described in embodiment 1, this method also comprises:

[0079] The platform agent issues a command to the TPM to check the RBS certificates appropriate for the application the challenger is interested in verifying integrity;

[0080] The TPM acquires a signed RBS certificate indicating the ground state; and

[0081] The platform agent issues commands to the TPM to perform check and extend operations, whereby the TPM extends a specific Platform Configuration Register (PCR) controlled by the T...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

An apparatus and methods that use trusted platform modules (TPM) to perform integrity measurements of multiple subsystems are disclosed. The state of platform configuration registers (PCRs) after boot up are stored as the base state of the system. In another embodiment, an application that is to be verified requests that its state be extended from the base state of the system. When such a requestis received, the state of the system is extended directly from the base state PCR contents and not from the system state. In another embodiment, a virtual PCR is used, where such a virtual PCR uses alarger memory space than a conventional TPM provides for a physical PCR, by use of encrypted storage on external, protected memory.

Description

technical field [0001] The present invention relates to trusted computing (ie, computer security) across multiple platforms (ie, subsystems). More particularly, the present invention relates to apparatus and methods for performing trusted computing integrity measurement reporting. Background technique [0002] The Platform Configuration Register (PCR) is a memory location inside the Trusted Platform Module (TPM) used to store a hash of data. In fact, TPM memory can be either volatile or non-volatile. [0003] Conventional Trusted Computing Group (TCG) specifications allow reading, extending and referencing those operations performed by the TPM on PCRs. The read operation is used to read the specified PCR value. Extend operations are used to modify PCR values ​​by extending old content with new content. Doing so allows the challenger to understand how the final PCR digest was constructed. The reference operation is used for integrity reporting, where the PCR value is enc...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06F21/00
CPCG06F21/57
Inventor S·莫瓦R·D·赫尔沙夫特R·拉沙I·查
Owner INTERDIGITAL TECH CORP
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com