PPT-Trusted Platform Module Integrity Measurement, Reporting, and Evaluation

1 Dennis Kafura CS5204 Operating Systems Motivation Reliance on remote clientsservers Financial records and ecommerce Electronic medical records Cloud computing Threats to clients from remote servers. In Action. The comScore Roadmap for Multi-Platform Cross-Media Measurement and Results of the CIMM Study. Joan FitzGerald, SVP, Television and Cross-Media Solutions. It’s Simple, . RIGHT?. How Many?. Trusted Computing and Multilevel Security. modified from slides of . Lawrie. . Brown . and . Hesham. El-. Rewini. Computer Security Models. two fundamental computer security facts:. all complex software systems have eventually revealed flaws or bugs that need to be fixed. Attestation. Dane Brandon, . Hardeep. . Uppal. CSE551. University of Washington. Overview. Motivation. Trusted Computing and Trusted Platform Modules (TPM). Trusted Software Stacks. Attestation. Measurements. Integrity Measurement, Reporting, and Evaluation. 1. Dennis Kafura – CS5204 – Operating Systems. Motivation. Reliance on remote clients/servers. Financial records and e-commerce. Electronic medical records. Michael Clarkson and Fred B. Schneider. Cornell University. RADICAL. May 10, 2010. Goal. Information-theoretic. Quantification of. programs’ impact on. Integrity. of Information. (relationship to database privacy). Xiaolong. . Wang, . Xinming. . Ou. Based on Dr. Andrew Martin’s slides from TIW 2013. Problem. We use different devices (smartphone, laptop, tablet, Xbox, router…) and grant them with authority everyday (Gmail/Facebook account, credit card, personal info, etc.). Slide credits. : Based on presentations from Dennis . Kafura. . (TPM) and Bryan . Parno. (Flicker). Trusted Platform Module. Integrity Measurement, Reporting, and Evaluation. Motivation. Reliance on remote clients/servers. 2013. Track B Extrinsic Evaluation. Synthesis & . Communiqué . Themes. Terry . Longstreth. Todd Schneider. 21 February 2013. 1. 24 Jan – First Panel E. stablished. Ground Rules. Todd Schneider . Michael Clarkson and Fred B. Schneider. Cornell University. IEEE Computer Security Foundations Symposium. July 17, 2010. Goal. Information-theoretic. Quantification of. programs’ impact on. Integrity. Xiaolong. . Wang, . Xinming. . Ou. Based on Dr. Andrew Martin’s slides from TIW 2013. Problem. We use different devices (smartphone, laptop, tablet, Xbox, router…) and grant them with authority everyday (Gmail/Facebook account, credit card, personal info, etc.). Expenditure Management Sector. Treasury Board of Canada Secretariat. Twentieth Annual PPX Symposium. 2016. A RESULTS AND DELIVERY CULTURE . 2. The Government is committed to evidence-based decision making. modified from slides of . Lawrie. . Brown . and . Hesham. El-. Rewini. Computer Security Models. two fundamental computer security facts:. all complex software systems have eventually revealed flaws or bugs that need to be fixed. 1. Needed because total variance of process recorded is the sum of process variation and measurement variation. Thus, when there is a special cause, always look first at measurment tool. 2. Metrology: the science of measurement. Integrity Revisited. James Hook. CS. 4/591. : Introduction to Computer Security. Last Time. Multilateral security models. Models that partition information to enforce need-to-know between peers. 2/7/12 13:41.