Hash-Based TPM Signatures for the Quantum World

  • Megumi Ando
  • Joshua D. Guttman
  • Alberto R. Papaleo
  • John Scire
Conference paper

DOI: 10.1007/978-3-319-39555-5_5

Part of the Lecture Notes in Computer Science book series (LNCS, volume 9696)
Cite this paper as:
Ando M., Guttman J.D., Papaleo A.R., Scire J. (2016) Hash-Based TPM Signatures for the Quantum World. In: Manulis M., Sadeghi AR., Schneider S. (eds) Applied Cryptography and Network Security. ACNS 2016. Lecture Notes in Computer Science, vol 9696. Springer, Cham

Abstract

Trusted Platform Modules (TPMs) provide trust and attestation services to the platforms they reside on, using public key encryption and digital signatures among other cryptography operations. However, the current standards mandate primitives that will be insecure in the presence of quantum computers. In this paper, we study how to eliminate these insecure primitives. We replace RSA-based digital signatures with a hash-based scheme. We show that this scheme can be implemented using reasonable amounts of space on the TPM. We also show how to protect the TPM from rollback attacks against these state-sensitive signature operations.

Keywords

Post-quantum Trusted Platform Module (TPM) Attestation Identity Key (AIK) Merkle trees 

Copyright information

© Springer International Publishing Switzerland 2016

Authors and Affiliations

  • Megumi Ando
    • 1
  • Joshua D. Guttman
    • 1
  • Alberto R. Papaleo
    • 1
  • John Scire
    • 2
  1. 1.The MITRE CorporationBedfordUSA
  2. 2.Stevens Institute of TechnologyHobokenUSA

Personalised recommendations