Validation of trusted computing techniques with eBPF (at Denmark TU)
Reference persons FULVIO GIOVANNI OTTAVIO RISSO
Research Groups COMPUTER NETWORKS GROUP - NETGROUP
Description The focus of this thesis is on the investigation of trusted computing technologies and more particularly the Trusted Platform Module (TPM). This is a hardware chip that can act as a "root of trust" and can support the trusted execution of a number of crypto operations. One of the things that I am currently investigating is the threat modelling (software verification) of the Trusted Software Stack (TSS) that is provided as the API for accessing the TPM - sending commands and receiving back the input from the host. One of the main assumptions is that this TSS is trusted - which, of course, is not the case in the real world but there has not been a detailed analysis of what information can be leaked by tracing what happens during the execution of this software stack.
This thesis proposes the use of eBPF to implement a set of "software hooks" for monitoring the core TPM commands when invoked by the TSS, determining whether current implementations can be considered trusted or there is the evidence of any possible security leak.
Notes La tesi sara' svolta alla DTU, Copenhagen.
Deadline 14/03/2020 PROPONI LA TUA CANDIDATURA