Dependable TCB based on the cell broadband engine™ isolation facility

Masana Murase, Hideyuki Tokuda

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

A Trusted Computing Base (TCB) such as a Trusted Platform Module (TPM) or a Mobile Trusted Module plays an essential role for security and privacy applications in embedded systems such as cell phones, smart sensors, and actuators. However, existing hardware-based TCBs lack flexibility for function updates, bug fixes, and feature updates. In this paper, we present a dependable TCB on a Cell Broadband Engine™processor by providing a hardware and software hybrid TPM. Unlike prior approaches, we provide three new features: (1) TPM functions are implemented in software running in memory isolated by hardware, (2) our software TPM is launched and establishes a chain of trust from the hardware using a secure boot method, and (3) a new TPM command provides dynamic patching to the running software TPM and secure code overlays for the efficient use of the limited resources. We show the feasibility of this hybrid implementation of the TPM by assessing its performance and security properties.

Original languageEnglish
Title of host publicationProceedings - 17th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2011
Pages360-370
Number of pages11
Volume1
DOIs
Publication statusPublished - 2011
Event17th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2011 - Toyama, Japan
Duration: 2011 Aug 282011 Aug 31

Other

Other17th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2011
CountryJapan
CityToyama
Period11/8/2811/8/31

Fingerprint

Engines
Hardware
Smart sensors
Hardware security
Trusted computing
Embedded systems
Computer hardware
Actuators
Data storage equipment

ASJC Scopus subject areas

  • Computational Theory and Mathematics
  • Computer Networks and Communications
  • Computer Science Applications

Cite this

Murase, M., & Tokuda, H. (2011). Dependable TCB based on the cell broadband engine™ isolation facility. In Proceedings - 17th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2011 (Vol. 1, pp. 360-370). [6029864] https://doi.org/10.1109/RTCSA.2011.45

Dependable TCB based on the cell broadband engine™ isolation facility. / Murase, Masana; Tokuda, Hideyuki.

Proceedings - 17th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2011. Vol. 1 2011. p. 360-370 6029864.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Murase, M & Tokuda, H 2011, Dependable TCB based on the cell broadband engine™ isolation facility. in Proceedings - 17th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2011. vol. 1, 6029864, pp. 360-370, 17th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2011, Toyama, Japan, 11/8/28. https://doi.org/10.1109/RTCSA.2011.45
Murase M, Tokuda H. Dependable TCB based on the cell broadband engine™ isolation facility. In Proceedings - 17th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2011. Vol. 1. 2011. p. 360-370. 6029864 https://doi.org/10.1109/RTCSA.2011.45
Murase, Masana ; Tokuda, Hideyuki. / Dependable TCB based on the cell broadband engine™ isolation facility. Proceedings - 17th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2011. Vol. 1 2011. pp. 360-370
@inproceedings{13810a62da064049a813f77981e287fd,
title = "Dependable TCB based on the cell broadband engine™ isolation facility",
abstract = "A Trusted Computing Base (TCB) such as a Trusted Platform Module (TPM) or a Mobile Trusted Module plays an essential role for security and privacy applications in embedded systems such as cell phones, smart sensors, and actuators. However, existing hardware-based TCBs lack flexibility for function updates, bug fixes, and feature updates. In this paper, we present a dependable TCB on a Cell Broadband Engine™processor by providing a hardware and software hybrid TPM. Unlike prior approaches, we provide three new features: (1) TPM functions are implemented in software running in memory isolated by hardware, (2) our software TPM is launched and establishes a chain of trust from the hardware using a secure boot method, and (3) a new TPM command provides dynamic patching to the running software TPM and secure code overlays for the efficient use of the limited resources. We show the feasibility of this hybrid implementation of the TPM by assessing its performance and security properties.",
author = "Masana Murase and Hideyuki Tokuda",
year = "2011",
doi = "10.1109/RTCSA.2011.45",
language = "English",
isbn = "9780769545028",
volume = "1",
pages = "360--370",
booktitle = "Proceedings - 17th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2011",

}

TY - GEN

T1 - Dependable TCB based on the cell broadband engine™ isolation facility

AU - Murase, Masana

AU - Tokuda, Hideyuki

PY - 2011

Y1 - 2011

N2 - A Trusted Computing Base (TCB) such as a Trusted Platform Module (TPM) or a Mobile Trusted Module plays an essential role for security and privacy applications in embedded systems such as cell phones, smart sensors, and actuators. However, existing hardware-based TCBs lack flexibility for function updates, bug fixes, and feature updates. In this paper, we present a dependable TCB on a Cell Broadband Engine™processor by providing a hardware and software hybrid TPM. Unlike prior approaches, we provide three new features: (1) TPM functions are implemented in software running in memory isolated by hardware, (2) our software TPM is launched and establishes a chain of trust from the hardware using a secure boot method, and (3) a new TPM command provides dynamic patching to the running software TPM and secure code overlays for the efficient use of the limited resources. We show the feasibility of this hybrid implementation of the TPM by assessing its performance and security properties.

AB - A Trusted Computing Base (TCB) such as a Trusted Platform Module (TPM) or a Mobile Trusted Module plays an essential role for security and privacy applications in embedded systems such as cell phones, smart sensors, and actuators. However, existing hardware-based TCBs lack flexibility for function updates, bug fixes, and feature updates. In this paper, we present a dependable TCB on a Cell Broadband Engine™processor by providing a hardware and software hybrid TPM. Unlike prior approaches, we provide three new features: (1) TPM functions are implemented in software running in memory isolated by hardware, (2) our software TPM is launched and establishes a chain of trust from the hardware using a secure boot method, and (3) a new TPM command provides dynamic patching to the running software TPM and secure code overlays for the efficient use of the limited resources. We show the feasibility of this hybrid implementation of the TPM by assessing its performance and security properties.

UR - http://www.scopus.com/inward/record.url?scp=84855558373&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84855558373&partnerID=8YFLogxK

U2 - 10.1109/RTCSA.2011.45

DO - 10.1109/RTCSA.2011.45

M3 - Conference contribution

AN - SCOPUS:84855558373

SN - 9780769545028

VL - 1

SP - 360

EP - 370

BT - Proceedings - 17th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2011

ER -