• DocumentCode
    494894
  • Title

    A Trusted Platform Module Based Anti-Forensics System

  • Author

    Goh, Weihan ; Leong, Peng Chor ; Yeo, Chai Kiat

  • Author_Institution
    Sch. of Comput. Eng., Nanyang Technol. Univ., Singapore, Singapore
  • fYear
    2009
  • fDate
    24-26 June 2009
  • Firstpage
    1
  • Lastpage
    5
  • Abstract
    A trusted platform module (TPM) contains a unique identity and provides a range of security functions. This paper outlines a client-server system utilizing a TPM-enabled computer to hinder forensic examination. The system allows for data confidentiality, plausible deniability, and hiding of traces that incriminating data was present on the client. The server will attest the client before allowing it to submit / receive incriminating data, and encrypted incriminating data can only be decrypted 1) by the encrypting client, and 2) if and only if the encrypting client´s platform configuration matches that during encryption. The client´s state can always be established via measurement results, and they cannot be tampered to fake attestation.
  • Keywords
    cryptography; antiforensics system; client-server system; data confidentiality; data incrimination; decryption; encryption; plausible deniability; security functions; traces hiding; trusted platform module; Client-server systems; Computer networks; Computer security; Cryptography; Data mining; Data security; Forensics; Hardware; Law enforcement; Text processing;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Network and Service Security, 2009. N2S '09. International Conference on
  • Conference_Location
    Paris
  • Print_ISBN
    978-2-9532-4431-1
  • Type

    conf

  • Filename
    5161650
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=494894