Embedded Trusted Computing with Authenticated Non-volatile Memory

  • Dries Schellekens
  • Pim Tuyls
  • Bart Preneel
Conference paper

DOI: 10.1007/978-3-540-68979-9_5

Part of the Lecture Notes in Computer Science book series (LNCS, volume 4968)
Cite this paper as:
Schellekens D., Tuyls P., Preneel B. (2008) Embedded Trusted Computing with Authenticated Non-volatile Memory. In: Lipp P., Sadeghi AR., Koch KM. (eds) Trusted Computing - Challenges and Applications. Trust 2008. Lecture Notes in Computer Science, vol 4968. Springer, Berlin, Heidelberg

Abstract

Trusted computing is an emerging technology to improve the trustworthiness of computing platforms. The Trusted Computing Group has proposed specifications for a Trusted Platform Module and a Mobile Trusted Module. One of the key problems when integrating these trusted modules into an embedded system-on-chip design, is the lack of on-chip multiple-time-programmable non-volatile memory. In this paper, we describe a solution to protect the trusted module’s persistent state in external memory against non-invasive attacks. We introduce a minimal cryptographic protocol to achieve an authenticated channel between the trusted module and the external non-volatile memory. A MAC algorithm has to be added to the external memory to ensure authenticity. As a case study, we discuss trusted computing on reconfigurable hardware. In order to make our solution applicable to the low-end FPGA series which has no security measures on board, we present a solution that only relies on the reverse engineering complexity of the undocumented bitstream encoding and uses a physically unclonable function for one-time-programmable key storage. Clearly, this solution is also applicable to high-end series with special security measures on board. Our solution also supports field updates of the trusted module.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Copyright information

© Springer-Verlag Berlin Heidelberg 2008

Authors and Affiliations

  • Dries Schellekens
    • 1
  • Pim Tuyls
    • 1
    • 2
  • Bart Preneel
    • 1
  1. 1.ESAT-SCD/COSICKatholieke Universiteit LeuvenBelgium
  2. 2.Philips Research LaboratoriesEindhovenThe Netherlands

Personalised recommendations