search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Trust and Trusted Computing Platforms

Technical Note
By
This technical note examines the Trusted Platform Module, which arose from work related to the Independent Research and Development project "Trusted Computing in Extreme Adversarial Environments: Using Trusted Hardware as a Foundation for Cyber Security."
Publisher

Software Engineering Institute

CMU/SEI Report Number
CMU/SEI-2011-TN-005
DOI (Digital Object Identifier)
10.1184/R1/6585401.v1

Abstract

Hardware-based trusted computing platforms are intended to overcome many of the problems of trust that are prominent in computing systems. In this paper, a result of the Software Engineering Institute’s Independent Research and Development Project “Trusted Computing in Extreme Adversarial Environments: Using Trusted Hardware as a Foundation for Cyber Security,” we discuss the capabilities and limitations of the Trusted Platform Module (TPM). We describe credential storage, device identity, chains of trust, and other techniques for extending hardware-based trust to higher levels of software-based infrastructure. We then examine the character of trust and identify strategies for increasing trust. We show why acceptance of TPM-based trust has been limited to date and suggest that broader acceptance will require more focus on traditional trust issues and on end-to-end services.

SHARE
Download PDF
Cite This Technical Note

Fisher, D., McCune, J., & Andrews, A. (2011, January 1). Trust and Trusted Computing Platforms. (Technical Note CMU/SEI-2011-TN-005). Retrieved April 19, 2024, from https://doi.org/10.1184/R1/6585401.v1.

@techreport{fisher_2011,
author={Fisher, David and McCune, Jonathan and Andrews, Archie},
title={Trust and Trusted Computing Platforms},
month={Jan},
year={2011},
number={CMU/SEI-2011-TN-005},
howpublished={Carnegie Mellon University, Software Engineering Institute's Digital Library},
url={https://doi.org/10.1184/R1/6585401.v1},
note={Accessed: 2024-Apr-19}
}

Fisher, David, Jonathan McCune, and Archie Andrews. "Trust and Trusted Computing Platforms." (CMU/SEI-2011-TN-005). Carnegie Mellon University, Software Engineering Institute's Digital Library. Software Engineering Institute, January 1, 2011. https://doi.org/10.1184/R1/6585401.v1.

D. Fisher, J. McCune, and A. Andrews, "Trust and Trusted Computing Platforms," Carnegie Mellon University, Software Engineering Institute's Digital Library. Software Engineering Institute, Technical Note CMU/SEI-2011-TN-005, 1-Jan-2011 [Online]. Available: https://doi.org/10.1184/R1/6585401.v1. [Accessed: 19-Apr-2024].

Fisher, David, Jonathan McCune, and Archie Andrews. "Trust and Trusted Computing Platforms." (Technical Note CMU/SEI-2011-TN-005). Carnegie Mellon University, Software Engineering Institute's Digital Library, Software Engineering Institute, 1 Jan. 2011. https://doi.org/10.1184/R1/6585401.v1. Accessed 19 Apr. 2024.

Fisher, David; McCune, Jonathan; & Andrews, Archie. Trust and Trusted Computing Platforms. CMU/SEI-2011-TN-005. Software Engineering Institute. 2011. https://doi.org/10.1184/R1/6585401.v1

Ask a question about this Technical Note