Open Trusted Computing
Overview
The Open Trusted Computing (OpenTC) consortium is
an international research and development project. It focuses on the
development of trusted and secure computing systems based on open
source software components. The project targets traditional computer
platforms as well as embedded systems such as mobile phones.
The projected architecture is based on security mechanisms provided
by low level operating system layers with isolation properties and
interfaces to dedicated Trusted Computing support hardware. A
simultaneous effort on all layers makes it possible to leverage the
enhanced trust and security properties of the platform. There is a wide
range of potential applications for the resulting system,
including servers, GRID technology environment, mobile phones and
industrial automation.
The framework is built around the "Trusted Platform Module"
(TPM) as specified by the Trusted Computing Group (TCG).
Special emphasis is placed on the Linux environment.
To enable maximum community benefit, project results are
integrated in and distributed as Open Source software.
The project aims to provide Open Trusted Computing prototypes
around the time when proprietary Trusted Computing operating
systems and solutions are expected to hit the market.
The work is cofinanced by the
European Commission
through the 6th framework programme.
Find more about OpenTC at the
OpenTC website.
Results
The work of IAIK within OpenTC focuses on the integration
of Trusted Computing technology into the Java™ platform and
research on Trusted Computing enabled network infrastructure components.
All implementation results of this effort are published for free
download and experimentation at the
Trusted Computing for the Java™ Platform project.
Amongst others, IAIK developed and released:
| Package |
Description |
| jTSS |
A 100% Java implementation of the TCG Software Stack (TSS). |
| jTSS Wrapper |
A Java wrapper for the C based TrouSerS
Trusted Software Stack. |
| jTpmTools |
A set of demonstration command line TPM tools. |
| TCcert |
A Java implementation of the new Trusted Computing certificate
types and certificate extensions, as specified by the TCG. |
| PrivacyCA |
A basic demo implementation of an AIK certificate issueing service.
A public test responder is online at
opentc.iaik.tugraz.at
since mid 2007.
|
| TCPVM |
An experimental modification of OpenJDK which integrates
Trusted Computing measurements into the core of a Java VM. |
| XKMS |
An XKMS protocol implementations as a potential protocol layer
for a Trusted Computing enhanced PKI. |
Publications
| Proceedings |
|---|
| 2009 |
Ronald Tögl, Thomas Winkler, Mohammad Nauman, Theodore Hong - "Towards Platform-Independent Trusted Computing" - STC'09 Proceedings; in CCS 2009 Co-Located Workshops' Compilation Proceedings |
 |
 |
 |
| 2009 |
Martin Pirker, Ronald Tögl, Daniel Hein, Peter Danner - "A PrivacyCA for Anonymity and Trust" - Trusted Computing |
|
|
|
| 2009 |
Ronald Tögl, Martin Pirker - "An ongoing Game of Tetris: Integrating Trusted Computing in Java, block-by-block" - Proceedings of the First International Conference Future of Trust in Computing 2008 |
|
|
|
| 2008 |
Ronald Tögl - "Existing and Future Security APIs for Trusted Platform Modules" |
|
|
|
| 2008 |
Kurt Dietrich, Martin Pirker, Tobias Vejda, Ronald Gregor Tögl, Thomas Winkler, Peter Lipp - "A Practical Approach for Establishing Trust Relationships between Remote Platforms using Trusted Computing" - Trustworthy Global Computing 2007, Revised Selected Papers |
|
|
 |
| 2008 |
Ronald Tögl, Georg Hofferek, Karin Greimel, Adrian Leung, Raphael C-W. Phan, Roderick Paul Bloem - "Formal Analysis of a TPM-Based Secrets Distribution and Storage Scheme" - International Symposium on Trusted Computing (TrustCom 2008) Proceedings, in 9th ICYCS Conference Proceedings |
|
|
|
| Book |
|---|
| 2008 |
Peter Lipp, Ahmad-Reza Sadeghi, Klaus-Michael Koch - "Trusted Computing - Challenges and Applications" (Springer Heidelberg - ISBN: 978-3-540-68978-2) |
|
|
|
| Article |
|---|
| 2007 |
Kurt Dietrich, Tobias Vejda, Ronald Gregor Tögl, Martin Pirker, Peter Lipp - "Can you Really Trust your Computer Today?" - ENISA quarterly (Volume: 3) |
|
 |
|
| Tech report |
|---|
| 2008 |
Martin Pirker, Ronald Tögl, Tobias Vejda, Andreas Niederl - "Java Virtual Machines as Small Trusted Computing Bases: A Case Study" |
|
|
|
| 2008 |
Ronald Tögl, Michael Steurer - "OpenTC WP3 Report: Java API and Library Implementation" |
|
|
|
| 2007 |
Martin Pirker - "OpenTC WP05 - Prototype of Basic Public-Key Infrastructure for OpenTC" |
|
|
|
| 2007 |
Martin Pirker - "OpenTC WP05 - Design of Basic Public-Key Infrastructure for OpenTC" |
|
|
|
| 2006 |
Kurt Dietrich, Markus Demuth, Jürgen Malin, Peter Lipp, Martin Pirker, Thomas Winkler - "OpenTC WP3 Report - Integrating Trusted Computing into the Java Programming Language" |
|
|
|
| 2006 |
Kurt Dietrich, Martin Pirker, Thomas Winkler - "OpenTC PET Scenario Specification - Description of the Client Proxy / Server Proxy Approach" |
|
|
|
| 2006 |
Kurt Dietrich, Thomas Winkler, Martin Pirker - "OpenTC PET Scenario - Bank and Client Proxy Architectural Design" |
|
|
|
| 2006 |
Kurt Dietrich, Martin Pirker, Thomas Winkler - "OpenTC WP05d Requirements Analysis - Key management infrastructure and public key enablement" |
|
|
|
| Presentation |
|---|
| 2008 |
Martin Pirker - "Advances on PrivacyCAs" (3rd European Trusted Infrastructure Summer School (ETISS) 2008, University of Oxford, 31.08.08) |
|
|
|
| 2008 |
Ronald Gregor Tögl - "Technical Session: Java API for Trusted Computing" (Trust 2008, Villach, 13.03.08) |
|
|
|
| 2008 |
Ronald Gregor Tögl - "How Trusted Systems are Programmed: A Practical View" (Trust 2008, Villach, 10.03.08) |
|
|
|
| 2008 |
Ronald Tögl - "Formal Analysis of a TPM-Based Secrets Distribution and Storage Scheme" (International Symposium on Trusted Computing (TrustCom 2008), Zhang Jia Jie, 21.11.08) |
|
|
|
| 2008 |
Ronald Tögl - "JSR 321 Expert Group Meeting" (Java Community Process, San Francisco, 07.05.08) |
|
|
|
| 2007 |
Ronald Gregor Tögl - "Integrating the TCG Software Stack in Java" (2nd European Trusted Infrastructure Summer School (ETISS), 02.10.07) |
|
|
|
| 2007 |
Martin Pirker - "Workshop on Trusted Identities" (2nd European Trusted Infrastructure Summer School (ETISS) 2007, 29.09.07) |
|
|
|
| 2007 |
Martin Pirker - "Neues aus Trusted Computing Land" (Grazer LinuxTage 2007, Graz, 19.05.07) |
|
|
|
| 2006 |
Thomas Winkler, Martin Pirker - "Linux Powered Trusted Computing" (Wiener Linux Tage 2006, Wien, 02.06.06) |
|
|
|
| 2006 |
Martin Pirker, Thomas Winkler - "Linux powered Trusted Computing" (Grazer LinuxTage 2006, Graz, 20.05.06) |
|
|
|
| Miscellaneous |
|---|
| 2009 |
Martin Pirker, Andreas Niederl - "IAIK PrivacyCA V2, a robustness and size optimised Trusted Computing PKI" |
|
|
|
| 2008 |
Martin Pirker, Michael Steurer, Ronald Tögl - "Trusted Computing Meets Java" |
|
|
|
| 2007 |
Thomas Winkler, Ronald Gregor Tögl - "jTSS - TCG Software Stack for the Java (tm) Platform" |
|
|
|
| 2007 |
Martin Pirker - "IAIK PrivacyCA, prototype implementation of a Trusted Computing PKI" |
|
|
|
| 2006 |
Thomas Winkler - "IAIK/OpenTC Java TSS Wrapper" |
|
|
|
| 2006 |
Thomas Winkler - "IAIK/OpenTC Java TPM Tools" |
|
|
|
| 2006 |
Thomas Winkler - "Infineon TPM 1.2 Patch for TrouSerS TSS Stack" |
|
|
|
| 2006 |
Martin Pirker - "IAIK XKMS, implementation of XML Key Management Specification" |
|
|
|
| 2006 |
Martin Pirker - "TCcert, trusted computing specific certificate tool" |
|
|
|
