Trusted Channels with Password-Based Authentication and TPM-Based Attestation

Author

Zhou, Lingli ; Zhang, Zhenfeng

Author_Institution

State Key Lab. of Inf. Security, Chinese Acad. of Sci., Beijing, China

Volume

1

fYear

2010

fDate

12-14 April 2010

Firstpage

223

Lastpage

227

Abstract

Trusted channels establish trust of endpoint by linking endpoint configuration information to secure channels. Many trusted channels for client-server applications are established based on Secure Sockets Layer (SSL) or Transport Layer Security (TLS) protocols. Two existing solutions for building trusted channels are shown to be vulnerable to collusion attacks in this paper. Then we propose a protocol to establish trusted channels using password-based authenticated key exchange and TPM-based attestation. Our protocol uses an efficient but different binding approach to resist the proposed collusion attack. Furthermore, we propose an extended protocol to achieve enhanced privacy for clients.

Keywords

cryptographic protocols; data privacy; message authentication; transport protocols; TPM-based attestation; client privacy; client-server application; collusion attacks; endpoint configuration information; password-based authenticated key exchange; password-based authentication; secure channels; secure sockets layer; transport layer security protocols; trusted channels; Application software; Authentication; Cryptographic protocols; Information security; Joining processes; Laboratories; Mobile communication; Mobile computing; Protection; Sockets; Password-based user authentication; TPM-based attestation; Trusted Channel; Trusted Computing;

fLanguage

English

Publisher

ieee

Conference_Titel

Communications and Mobile Computing (CMC), 2010 International Conference on

Conference_Location

Shenzhen

Print_ISBN

978-1-4244-6327-5

Electronic_ISBN

978-1-4244-6328-2

Type

conf

DOI

10.1109/CMC.2010.232

Filename

5471481