A Time-and-times-limited Strong Direct Anonymous Attestation Scheme
Direct Anonymous Attestation (BAA) has been adopted in Trusted Platform Module v 1.2 (TPM v 1.2) Specification, described by Trusted Computing Group (TCG). It intends to solve the trusted platform attestation and the platform privacy protection. In DAA, the certificate can be used repeatedly and this will provide the opportunities for rogue TPMs to initiate the replay attacks. For identifying the rogue platform, DAA cannot but use a relatively fixed pseudonym rather than a random pseudonym, which would badly weaken the anonymity of the platform. To tackle this problem, a time-and-times-limited strong DAA (TTLS-DAA) scheme, which extends DAA by adding valid period of time and restriction of times into the certificate, is put forward. Since the pseudonym of the user platform is different for each attestation, TTLS-DAA provides stronger anonymity. Being able to control the use of the certificate, it can be widely used in practice especially in commercial fields.
trusted computing privacy protecting trusted platform attestation direct anonymous attestation anonymity
Yue CHEN Hong-hu ZHEN Jing CAO Jing SHAO
Institute of Electronic Technology Information Engineering University Zhengzhou, China
国际会议
北京
英文
468-471
2009-07-24(万方平台首次上网日期,不代表论文的发表时间)