MY147280A - A method and system for a remote attestation in a trusted foundation platform - Google Patents

A method and system for a remote attestation in a trusted foundation platform

Info

Publication number
MY147280A
MY147280A MYPI2010001586A MYPI2010001586A MY147280A MY 147280 A MY147280 A MY 147280A MY PI2010001586 A MYPI2010001586 A MY PI2010001586A MY PI2010001586 A MYPI2010001586 A MY PI2010001586A MY 147280 A MY147280 A MY 147280A
Authority
MY
Malaysia
Prior art keywords
trusted
hash list
remote attestation
platform
foundation
Prior art date
Application number
MYPI2010001586A
Inventor
Norazah Abd Aziz
Lucyantie Mazalan
Mohd Azuddin Parman
Abdul Muzairie Abdul Mutalib
Putri Shahnim Khalid
Original Assignee
Mimos Berhad
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Mimos Berhad filed Critical Mimos Berhad
Priority to MYPI2010001586A priority Critical patent/MY147280A/en
Priority to PCT/MY2010/000192 priority patent/WO2011126357A1/en
Publication of MY147280A publication Critical patent/MY147280A/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/062Network architectures or network communication protocols for network security for supporting key management in a packet data network for key distribution, e.g. centrally by trusted party
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • General Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Software Systems (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computing Systems (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Storage Device Security (AREA)

Abstract

A METHOD AND SYSTEM (100) FOR PROVIDING A REMOTE ATTESTATION IN A TRUSTED FOUNDATION PLATFORM THROUGH THE USE OF A TRUST HASH LIST. THE SYSTEM COMPRISING AT LEAST ONE FOUNDATION SERVER (101), AT LEAST ONE TRUSTED CERTIFICATE AUTHORITY (102), AT LEAST ONE CLIENT PLATFORM (104) AND AT LEAST ONE APPLICATION SERVER (103). THE AT LEAST ONE FOUNDATION SERVER (101) HAVING MEANS FOR CREATING AT LEAST ONE HASH LIST AND MAINTAINING THE AT LEAST ONE HASH LIST. THE AT LEAST ONE TRUSTED CERTIFICATE AUTHORITY (102) HAVING MEANS FOR PROTECTING INTEGRITY OF A TRUST HASH LIST THROUGH A CERTIFICATION PROCESS AVAILABLE IN AN INSTALLATION MEDIA PACKAGE. THE AT LEAST ONE CLIENT PLATFORM (104) HAVING MEANS FOR INSTALLING A TRUSTED PACKAGE PLATFORM AND BOOTING THE TRUST HASH LIST. THE AT LEAST ONE APPLICATION SERVER (103) HAVING MEANS FOR EXECUTING THE REMOTE ATTESTATION PROCESS.
MYPI2010001586A 2010-04-09 2010-04-09 A method and system for a remote attestation in a trusted foundation platform MY147280A (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
MYPI2010001586A MY147280A (en) 2010-04-09 2010-04-09 A method and system for a remote attestation in a trusted foundation platform
PCT/MY2010/000192 WO2011126357A1 (en) 2010-04-09 2010-09-30 A method and system for a remote attestation in a trusted foundation platform

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
MYPI2010001586A MY147280A (en) 2010-04-09 2010-04-09 A method and system for a remote attestation in a trusted foundation platform

Publications (1)

Publication Number Publication Date
MY147280A true MY147280A (en) 2012-11-30

Family

ID=44763124

Family Applications (1)

Application Number Title Priority Date Filing Date
MYPI2010001586A MY147280A (en) 2010-04-09 2010-04-09 A method and system for a remote attestation in a trusted foundation platform

Country Status (2)

Country Link
MY (1) MY147280A (en)
WO (1) WO2011126357A1 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109714168B (en) 2017-10-25 2022-05-27 阿里巴巴集团控股有限公司 Trusted remote attestation method, device and system
CN115085966B (en) * 2022-04-28 2024-04-05 麒麟软件有限公司 Method for establishing remote trusted connection of peers

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6574729B1 (en) * 1999-08-26 2003-06-03 Lucent Technologies Inc. System for remotely identifying and providing information of unknown software on remote network node by comparing the unknown software with software audit file maintained on server
US20060005009A1 (en) * 2004-06-30 2006-01-05 International Business Machines Corporation Method, system and program product for verifying an attribute of a computing device
US20070136814A1 (en) * 2005-12-12 2007-06-14 Michael Lee Critical function monitoring and compliance auditing system
US9626511B2 (en) * 2008-08-26 2017-04-18 Symantec Corporation Agentless enforcement of application management through virtualized block I/O redirection

Also Published As

Publication number Publication date
WO2011126357A1 (en) 2011-10-13

Similar Documents

Publication Publication Date Title
WO2011056321A3 (en) Key certification in one round trip
WO2016077017A3 (en) Trusted platform module certification and attestation utilizing an anonymous key system
EP2897051A3 (en) Verifiable audit log
WO2017218109A3 (en) Technologies for secure software update using bundles and merkle signatures
BR112018011782A2 (en) method for securing a mobile app to run on a mobile device
WO2012109640A3 (en) System and method for secure software update
PH12019550119A1 (en) Addressing a trusted execution environment using signing key
WO2016057086A3 (en) Common modulus rsa key pairs for signature generation and encryption/decryption
MY158770A (en) Method for interworking with trustzone between normal domain and secure domain, and management method of trusted application download, management server, device and system using it
BR112014019937A8 (en) METHOD AND DEVICE FOR LARGE-SCALE DISTRIBUTION OF ELECTRONIC ACCESS CUSTOMERS
WO2017019201A3 (en) Cryptographic assurances of data integrity for data crossing trust boundaries
WO2007115982A3 (en) Identity protection method, devices and corresponding computer programme product
ATE484144T1 (en) SYSTEM AND METHOD FOR PROCESSING SECURE TRANSMISSIONS
MX2021013756A (en) Mitigation of ransomware in integrated, isolated applications.
WO2013020705A3 (en) Cryptographic data distribution and revocation for handheld medical devices
MX2014004838A (en) System and method for key management for issuer security domain using global platform specifications.
GB2472169A (en) System and method for providing a system management command
MX337986B (en) Systems, methods, and computer program products for managing secure elements.
WO2011083343A3 (en) System and method of enforcing a computer policy
EP2498200A4 (en) Method of authentication at time of update of software embedded in information terminal, system for same and program for same
MX362308B (en) Method and system for verifying an access request.
GB2533727A (en) Registry apparatus, agent device, application providing apparatus and corresponding methods
NZ752240A (en) Secure key management
EP4246926A3 (en) Domain name operation verification code generation and/or verification
WO2012087692A3 (en) System and method for secure communications in a communication system