TU Darmstadt / ULB / TUbiblio

Citizen Electronic Identities using {TPM} 2.0

Nyman, Thomas and Ekberg, Jan-Erik and Asokan, N. (2014):
Citizen Electronic Identities using {TPM} 2.0.
In: CoRR, abs/1409.1023, [Article]

Abstract

Electronic Identification (eID) is becoming commonplace in several European countries. eID is typically used to authen- ticate to government e-services, but is also used for other services, such as public transit, e-banking, and physical se- curity access control. Typical eID tokens take the form of physical smart cards, but successes in merging eID into phone operator SIM cards show that eID tokens integrated into a personal device can offer better usability compared to standalone tokens. At the same time, trusted hardware that enables secure storage and isolated processing of sensi- tive data have become commonplace both on PC platforms as well as mobile devices. Some time ago, the Trusted Computing Group (TCG) released the version 2.0 of the Trusted Platform Module (TPM) specification. We propose an eID architecture based on the new, rich authorization model introduced in the TCGs TPM 2.0. The goal of the design is to improve the overall security and usability compared to traditional smart card-based solutions. We also provide, to the best our knowledge, the first accessible description of the TPM 2.0 authorization model.

Item Type: Article
Erschienen: 2014
Creators: Nyman, Thomas and Ekberg, Jan-Erik and Asokan, N.
Title: Citizen Electronic Identities using {TPM} 2.0
Language: German
Abstract:

Electronic Identification (eID) is becoming commonplace in several European countries. eID is typically used to authen- ticate to government e-services, but is also used for other services, such as public transit, e-banking, and physical se- curity access control. Typical eID tokens take the form of physical smart cards, but successes in merging eID into phone operator SIM cards show that eID tokens integrated into a personal device can offer better usability compared to standalone tokens. At the same time, trusted hardware that enables secure storage and isolated processing of sensi- tive data have become commonplace both on PC platforms as well as mobile devices. Some time ago, the Trusted Computing Group (TCG) released the version 2.0 of the Trusted Platform Module (TPM) specification. We propose an eID architecture based on the new, rich authorization model introduced in the TCGs TPM 2.0. The goal of the design is to improve the overall security and usability compared to traditional smart card-based solutions. We also provide, to the best our knowledge, the first accessible description of the TPM 2.0 authorization model.

Journal or Publication Title: CoRR
Volume: abs/1409.1023
Uncontrolled Keywords: ICRI-SC
Divisions: Profile Areas > Cybersecurity (CYSEC)
Profile Areas
Date Deposited: 31 Dec 2016 00:01
Identification Number: TUD-CS-2014-1029
Export:

Optionen (nur für Redakteure)

View Item View Item