MY151315A

MY151315A - System and method for issuing endorsement key credential in trusted computing environment using local certificate authority

Info

Publication number: MY151315A
Authority: MY
Inventors: Norazah Abd Aziz; Lucyantie Mazalan; Mohd Azuddin Parman; Putri Shahnim Khalid
Original assignee: Mimos Berhad
Priority date: 2010-05-07
Filing date: 2010-05-07
Publication date: 2014-05-15
Also published as: WO2011139135A1

Abstract

[0038] THE PRESENT INVENTION PROVIDES A SYSTEM (100) FOR ISSUING ENDORSEMENT KEY (EK) CERTIFICATE. THE SYSTEM COMPRISES A TRUSTED PLATFORM SYSTEM (110) REQUESTING FOR THE EK CERTIFICATE, THE TRUSTED PLATFORM SYSTEM (110) HAVING A VIRTUAL TRUSTED PLATFORM MODULE (VTPM) INSTANCE (122) AND A LOCAL CERTIFICATION AUTHORITY (CA) (124) MANAGED UNDER A HYPERVISOR (112) OF THE TRUSTED PLATFORM SYSTEM (110); A THIRD PARTY PRIVACY CERTIFICATION AUTHORITY (PCA) (130) OPERATIONALLY CONNECTING TO THE TRUSTED PLATFORM SYSTEM (110) THROUGH A SECURE CHANNEL (135), WHEREIN THE THIRD PARTY PCA (130) OPERATIONALLY ISSUING A CA CERTIFICATE TO VALID LOCAL CA. OPERATIONALLY, THE LOCAL CA (124) REQUESTS A CA CERTIFICATE FROM THE THIRD PARTY PCA (130), AND UPON VERIFIED TO BE A VALID LOCAL CA, THE LOCAL CA SIGNS AND ISSUES THE EK CERTIFICATE TO THE VTPM. A METHOD OF PROVIDING A TRUSTED COMPUTING ENVIRONMENT IS ALSO PROVIDED. [0039]