(2019) simTPM: User-centric TPM for Mobile Devices (Technical Report).
|
Text (Technical report for the accepted version in Usenix'19)
1905.08164.pdf - Supplemental Material Available under License Creative Commons GNU GPL (Software). Download (726kB) | Preview |
Abstract
Trusted Platform Modules are valuable building blocks for security solutions and have also been recognized as beneficial for security on mobile platforms, like smartphones and tablets. However, strict space, cost, and power constraints of mobile devices prohibit an implementation as dedicated onboard chip and the incumbent implementations are software TPMs protected by Trusted Execution Environments. In this paper, we present simTPM, an alternative implementation of a mobile TPM based on the SIM card available in mobile platforms. We solve the technical challenge of implementing a TPM2.0 in the resource-constrained SIM card environment and integrate our simTPM into the secure boot chain of the ARM Trusted Firmware on a HiKey960 reference board. Most notably, we address the challenge of how a removable TPM can be bound to the host device’s root of trust for measurement. As such, our solution not only provides a mobile TPM that avoids additional hardware while using a dedicated, strongly protected environment, but also offers promising synergies with co-existing TEE-based TPMs. In particular, simTPM offers a user-centric trusted module. Using performance benchmarks, we show that our simTPM has competitive speed with a reported TEE-based TPM and a hardware-based TPM.
Item Type: | Article |
---|---|
Divisions: | Sven Bugiel (Trusted Systems Group, TSG) |
Depositing User: | Dhiman Chakraborty |
Date Deposited: | 07 Jun 2019 08:08 |
Last Modified: | 18 Jul 2019 12:11 |
Primary Research Area: | NRA4: Secure Mobile and Autonomous Systems |
URI: | https://publications.cispa.saarland/id/eprint/2902 |
Actions
Actions (login required)
View Item |