On the deployment of Mobile Trusted Modules

Andreas U. Schmidt; Nicolai Kuntze; Michael Kasper

arXiv:0712.2113·cs.CR·November 18, 2016

On the deployment of Mobile Trusted Modules

Andreas U. Schmidt, Nicolai Kuntze, Michael Kasper

PDF

TL;DR

This paper discusses the design and implementation of trusted mobile platforms using Trusted Mobile Modules, focusing on device ownership and credential migration for secure mobile device deployment.

Contribution

It proposes a practical approach for deploying trusted mobile platforms based on TCG specifications, including methods for device ownership and credential portability.

Findings

01

A method for user take-ownership of devices

02

A process for migrating user credentials between devices

03

A practical deployment framework for trusted mobile platforms

Abstract

In its recently published TCG Mobile Reference Architecture, the TCG Mobile Phone Work Group specifies a new concept to enable trust into future mobile devices. For this purpose, the TCG devises a trusted mobile platform as a set of trusted engines on behalf of different stakeholders supported by a physical trust-anchor. In this paper, we present our perception on this emerging specification. We propose an approach for the practical design and implementation of this concept and how to deploy it to a trustworthy operating platform. In particular we propose a method for the take-ownership of a device by the user and the migration (i.e., portability) of user credentials between devices.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.