Trusted terminal-based systems
Independent thesis Advanced level (degree of Master (Two Years)), 20 credits / 30 HE creditsStudent thesisAlternative title
Garantera tilltro i terminalbaserade system (Swedish)
Trust is a concept of increasing importance in today’s information systems where information storage and generation to a higher extent is distributed among several entities throughout local or global networks. This trend in information science requires new ways to sustain the information security in the systems. This document deﬁnes trust in the context of a terminal-based system and analyzes the architecture of a distributed terminal-based system using threat modeling tools to elicit the prerequisites for trust in such a system. The result of the analysis is then converted into measures and activities that can be performed to fulﬁll these prerequisites. The proposed measures include hardware identiﬁcation and both hardware and software attestation supported by the Trusted Computing Group standards and Trusted Platform Modules that are included in a connection handshake protocol. The proposed handshake protocol is evaluated against a practical case of a terminal-based casino system where the weaknesses of the protocol, mainly the requirement to build a system-wide Trusted Computing Base, are made evident. Proposed solutions to this problem such as minimization of the Trusted Computing Base are discussed along with the fundamental reason of the problem and the future solutions using the next generation of CPUs and Operating System kernels.
Place, publisher, year, edition, pages
2011. , 87 p.
TPM, Trusted systems, Software attestation, Security, TCB
Computer and Information Science Computer Science
IdentifiersURN: urn:nbn:se:liu:diva-69589ISRN: LiTH-ISY-EX--11/4458--SEOAI: oai:DiVA.org:liu-69589DiVA: diva2:429410
Subject / course
2011-06-09, Algoritmen, Linköpings universitet, Linköping, 13:00 (Swedish)