Title :
Trusted Channels with Password-Based Authentication and TPM-Based Attestation
Author :
Zhou, Lingli ; Zhang, Zhenfeng
Author_Institution :
State Key Lab. of Inf. Security, Chinese Acad. of Sci., Beijing, China
Abstract :
Trusted channels establish trust of endpoint by linking endpoint configuration information to secure channels. Many trusted channels for client-server applications are established based on Secure Sockets Layer (SSL) or Transport Layer Security (TLS) protocols. Two existing solutions for building trusted channels are shown to be vulnerable to collusion attacks in this paper. Then we propose a protocol to establish trusted channels using password-based authenticated key exchange and TPM-based attestation. Our protocol uses an efficient but different binding approach to resist the proposed collusion attack. Furthermore, we propose an extended protocol to achieve enhanced privacy for clients.
Keywords :
cryptographic protocols; data privacy; message authentication; transport protocols; TPM-based attestation; client privacy; client-server application; collusion attacks; endpoint configuration information; password-based authenticated key exchange; password-based authentication; secure channels; secure sockets layer; transport layer security protocols; trusted channels; Application software; Authentication; Cryptographic protocols; Information security; Joining processes; Laboratories; Mobile communication; Mobile computing; Protection; Sockets; Password-based user authentication; TPM-based attestation; Trusted Channel; Trusted Computing;
Conference_Titel :
Communications and Mobile Computing (CMC), 2010 International Conference on
Conference_Location :
Shenzhen
Print_ISBN :
978-1-4244-6327-5
Electronic_ISBN :
978-1-4244-6328-2
DOI :
10.1109/CMC.2010.232
