Trusted Systems: First International Conference, INTRUST 2009, Beijing, China, December 17-19, 2009. Proceedings (Lecture Notes in Computer Science, 6163)

Title Page
Preface
INTRUST 2009
Table of Contents
Invited Talk
On Design of a Trusted Software Base with Support of TPCM
Introduction
Practical Needs for a Trusted Software Base
Significance of Trust Functions in System Software
Significance of a TSB
Philosophy in TSB Design
The Logical Two-System Concept
Enforcement Method for the Two-System Concept
Approaches to Designing TSB
Architecture Framework
Primary Trust Base
Baseline Repository
Control Mechanism
Measurement Mechanism
Decision Mechanism
Underpinning Mechanism
Capabilities of Isolation and Interaction
Capability of Evolvement
Considerations on TSB Implementation
Layered Structure
Program Organization
Protecting the TSB
Evolvement of TSB
Service Interface
A Few More Words
Related Work
Conclusion
References
Secure Storage
External Authenticated Non-volatile Memory with Lifecycle Management for State Protection in Trusted Computing
Introduction
Requirements
Assumptions
Requirements
Design Overview
Design Choices
Layout of Non-volatile Memory
Keys, States and Commands
State Management and Lifecycle Model
SSC Management Logic
Error Recovery
Probabilistic Updates
Analysis
Implementation
Conclusions
References
A Method for Safekeeping Cryptographic Keys from Memory Disclosure Attacks
Introduction
General Threat Model
The Safekeeping Method and Its Implementation
Basic Idea and Resulting Prototype
Scrambling and Dispersing a Key in RAM
Obscuring the Index Table
Disabling Interrupts
Refining Attacks by Considering Our Design
Security Analysis
Example Scenario
Effects of the Key Compromise Methods
Security Summary
Performance Analysis of Prototype
Related Work
Conclusion and Open Problems
References
Attestation
Remote Attestation on Function Execution (Work-in-Progress)
Introduction
Related Work
Preliminaries
Call Stack
Secure Kernel
Debug Trap
Scheme Overview
Architecture
Trust Chain
Rationale
Design Details
Preprocessing Phase
Runtime Phase
Verification Phase
Discussions
Characteristics of Mission Critical Functions
Attest Multiple Functions
Context Switch
Data Flow Attestation
Conclusion
References
Scalable Remote Attestation with Privacy Protection (Work in Progress)
Introduction
Motivating Use Case
Target Architecture
Scalable Behavior Attestation
Scalable Program Execution Attestation
Scalable Integrity Measurement Architecture
Implementation
Discussion
Related Work
Conclusion and Future Work
References
Anonymous Credentials for Java Enabled Platforms: A Performance Evaluation
Introduction
Related Work
The DAA Scheme and Performance Results
Parameter Setup
The Join Process
Camenisch-Lysyanskaya Signatures
DAA Signature Creation
DAA Signature Verification
Implementation Details and Discussion
Modular Arithmetic in BouncyCastle and IAIK JCE-ME
Random Number Generation on J2ME Platforms
Hashing of Bignumber Objects
Prime Number Generation
Embedded Java Performance Improvements
Test Environment
Test Devices
Future Work and Improvements
Conclusion
References
Trusted Network
SocialClouds: Concept, Security Architecture and Some Mechanisms
Introduction
SocialClouds: Concept
SocialCloud Challenges and Security Architecture
Challenges of SocialClouds
Threat Modeling and Implications
A Security Architecture for SocialClouds
CryptoOverlay: A Cryptographic Architecture
Two CryptoOverlay Primitives
Cryptographic Preliminaries
Definition and Security of Assembly Signature and Identification Schemes
Constructing Assembly Signature and Identification Schemes
Performance Analysis and Improvement
Related Work
Conclusion
References
Privacy Enhanced Trusted Network Connect
Introduction
Related Work
TNC in a Nutshell
NAC Assessment Threats in Example
Client-Side Policies in a TNC Environment
General Approach
Expressing Client-Side Policies in XML
Policy Enforcement
Security Considerations
Applicability Considerations
Conclusion and Future Work
References
Research on Multistage Interconnection Architecture and Collision Detection Model (Work-in-Progress)
Introduction
Architecture of Multistage HSLIS Interconnection
Collision Detection of Multistage Interconnection Policy
Description of Policy Collision
Detection and Resolution of Policy Collision
Conclusions
References
Virtualization
Trusted Virtual Domains – Design, Implementation and Lessons Learned
Introduction
Design Goals
Assumptions, Threat Model, and Requirements Analysis
Design of TVD Infrastructure
General TVD Architecture
TVD Deploy Protocol
TVD Join Protocol
TVD Leave and Undeploy Protocols
Membership Revocation and Policy Update
Implementation
An Application Scenario
The VDC Demonstrator
Networked Hypervisor Abstraction
Virtual Networking for TVDs
TVD Policy
Revocation of TVD Components
Lessons Learned
Multiple Logical Networks for Intra-TVD Networking
Revocation Issues
Labeling Scheme Needed to Control Access to Resources
Hypervisor Abstraction Layer Needs More Abstraction
TVD Policy Definition
Related Work
Conclusion
References
Trusted Integrity Measurement and Reporting for Virtualized Platforms (Work-in-Progress)
Introduction
Background
Trusted Computing
Machine Virtualization
Motivation of This Work
Overview of Our Solution
A Key Management Method
Two Integrity Management Services
Basic Integrity Management
Hierarchical Integrity Management
Related Work
Conclusions
References
Applications
A Feather-Weight Application Isolation Model (Work-in-Progress)
Introduction
Relative Works
Noninterference Information Flow Model
Sandbox
Virtual Machine
An Overview of FAI
Process Permission Constraint (PPC)
Object Access Control (OAC)
Features of FAI Model
Formal Model of FAI
Security Analysis
Reducing Interfere among Processes
Resisting Malware Attack
Defending Attack toward Software Vulnerability
Implementation
PPC Module
OAC Module
Policy Manage Module
WAPS Analysis
Conclusion and Future Work
References
Exploring Trust of Mobile Applications Based on User Behaviors (Work-in-Progress)
Introduction
Background
Methods
Our Proposed Trust Model and Scale Development
Data Collection
Analysis and Results
Data Processing and Analysis
Results
Limitations and Suggestions for Future Research
Conclusions and Future Work
References
Trusted Firmware Services Based on TPM
Introduction
Related Works
UEFI Based Firmware
TPM Based Security
Trusted Firmware Services
Biometric Password Protection
Sensitive Data Protection
UEFI Intrusion Reporting
Experiments
Conclusion
References
Supporting Technology
Improved Cryptanalysis of the FOX Block Cipher
Introduction
Preliminaries
FOX Block Cipher
Pseudorandom and Strong Pseudorandom Permutations
Pseudorandomness of FOX64
2-Round Pseudorandom Distinguisher of FOX64
3-Round Strong Pseudorandom Distinguisher of FOX64
Impossible Differential Cryptanalysis of FOX
4-Round Impossible Differential Characteristics
Impossible Differential Attack on FOX
Conclusion
References
Bitwise Higher Order Differential Cryptanalysis
Introduction
Preliminaries
Higher Order Differential Cryptanalysis
Boolean Function
Bitwise Higher Order Differential Cryptanalysis
An Efficient Algorithm
Several Methods to Simplify Computation
Cryptanalysis of Feistel Network
Cryptanalysis of PRESENT
Conclusion and Further Works
References
Author Index