Enabling Key Migration Between Non-Compatible TPM Versions

Linus Karlsson; Martin Hell

doi:10.1007/978-3-319-45572-3_6

Enabling Key Migration Between Non-Compatible TPM Versions

Linus Karlsson, Martin Hell

Forskningsoutput: Kapitel i bok/rapport/Conference proceeding › Konferenspaper i proceeding › Peer review

917 Nedladdningar (Pure)

Sammanfattning

We consider the problem of migrating keys from TPM 1.2 to the backwards
incompatible TPM 2.0. The major differences between
the two versions introduce several challenges for deployed systems when
support for TPM 2.0 is introduced. We show how TPM 2.0 support can be
introduced while still maintaining the functionality specified by TPM 1.2,
allowing a smoother transition to the newer version. Specifically, we
propose a solution such that keys can be migrated from TPM 1.2 to TPM 2.0,
while retaining behavior with regard to e.g. authorization, migration
secrets, PCR values and CMK functionality. This is achieved by utilizing
new functionality, such as policies, in TPM 2.0. The proposed solution is
implemented and verified using TPM emulators to ensure correctness.

Originalspråk	engelska
Titel på värdpublikation	Trust and Trustworthy Computing
Förlag	Springer
Sidor	101-118
Antal sidor	8
Volym	9824
ISBN (elektroniskt)	978-3-319-45572-3
ISBN (tryckt)	978-3-319-45571-6
DOI	https://doi.org/10.1007/978-3-319-45572-3_6
Status	Published - 2016
Evenemang	TRUST 2016 - Vienna, Österrike Varaktighet: 2016 aug. 29 → 2016 aug. 30

Publikationsserier

Namn	Lecture Notes in Computer Science
Förlag	Springer
Volym	9824
ISSN (tryckt)	0302-9743

Konferens

Konferens	TRUST 2016
Land/Territorium	Österrike
Ort	Vienna
Period	2016/08/29 → 2016/08/30

Ämnesklassifikation (UKÄ)

Datorsystem

Tillgång till dokument

10.1007/978-3-319-45572-3_6

KarlssonHell-EnablingKeyMigrationAccepterat manuskript från författare, 264 KB

1 Doktorsavhandling (sammanläggning)

Contributions to Preventive Measures in Cyber Security
Karlsson, L., 2019 sep. 30, Department of Electrical and Information Technology, Lund University. 205 s.
Forskningsoutput: Avhandling › Doktorsavhandling (sammanläggning)

Öppen tillgång
Fil

Citera det här

@inproceedings{6ac43a0576904cabb6471412074aac01,

title = "Enabling Key Migration Between Non-Compatible TPM Versions",

abstract = "We consider the problem of migrating keys from TPM 1.2 to the backwardsincompatible TPM 2.0. The major differences betweenthe two versions introduce several challenges for deployed systems whensupport for TPM 2.0 is introduced. We show how TPM 2.0 support can beintroduced while still maintaining the functionality specified by TPM 1.2,allowing a smoother transition to the newer version. Specifically, wepropose a solution such that keys can be migrated from TPM 1.2 to TPM 2.0,while retaining behavior with regard to e.g. authorization, migrationsecrets, PCR values and CMK functionality. This is achieved by utilizingnew functionality, such as policies, in TPM 2.0. The proposed solution isimplemented and verified using TPM emulators to ensure correctness.",

author = "Linus Karlsson and Martin Hell",

year = "2016",

doi = "10.1007/978-3-319-45572-3_6",

language = "English",

isbn = "978-3-319-45571-6",

volume = "9824",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "101--118",

booktitle = "Trust and Trustworthy Computing",

address = "Germany",

note = "TRUST 2016 ; Conference date: 29-08-2016 Through 30-08-2016",

}

TY - GEN

T1 - Enabling Key Migration Between Non-Compatible TPM Versions

AU - Karlsson, Linus

AU - Hell, Martin

PY - 2016

Y1 - 2016

N2 - We consider the problem of migrating keys from TPM 1.2 to the backwardsincompatible TPM 2.0. The major differences betweenthe two versions introduce several challenges for deployed systems whensupport for TPM 2.0 is introduced. We show how TPM 2.0 support can beintroduced while still maintaining the functionality specified by TPM 1.2,allowing a smoother transition to the newer version. Specifically, wepropose a solution such that keys can be migrated from TPM 1.2 to TPM 2.0,while retaining behavior with regard to e.g. authorization, migrationsecrets, PCR values and CMK functionality. This is achieved by utilizingnew functionality, such as policies, in TPM 2.0. The proposed solution isimplemented and verified using TPM emulators to ensure correctness.

AB - We consider the problem of migrating keys from TPM 1.2 to the backwardsincompatible TPM 2.0. The major differences betweenthe two versions introduce several challenges for deployed systems whensupport for TPM 2.0 is introduced. We show how TPM 2.0 support can beintroduced while still maintaining the functionality specified by TPM 1.2,allowing a smoother transition to the newer version. Specifically, wepropose a solution such that keys can be migrated from TPM 1.2 to TPM 2.0,while retaining behavior with regard to e.g. authorization, migrationsecrets, PCR values and CMK functionality. This is achieved by utilizingnew functionality, such as policies, in TPM 2.0. The proposed solution isimplemented and verified using TPM emulators to ensure correctness.

U2 - 10.1007/978-3-319-45572-3_6

DO - 10.1007/978-3-319-45572-3_6

M3 - Paper in conference proceeding

SN - 978-3-319-45571-6

VL - 9824

T3 - Lecture Notes in Computer Science

SP - 101

EP - 118

BT - Trust and Trustworthy Computing

PB - Springer

T2 - TRUST 2016

Y2 - 29 August 2016 through 30 August 2016

ER -

Enabling Key Migration Between Non-Compatible TPM Versions

Sammanfattning

Publikationsserier

Konferens

Ämnesklassifikation (UKÄ)

Tillgång till dokument

Forskningsoutput

Contributions to Preventive Measures in Cyber Security

Citera det här