Validation of trusted computing techniques with eBPF (presso Denmark TU)
Riferimenti FULVIO GIOVANNI OTTAVIO RISSO
Gruppi di ricerca COMPUTER NETWORKS GROUP - NETGROUP
Descrizione The focus of this thesis is on the investigation of trusted computing technologies and more particularly the Trusted Platform Module (TPM). This is a hardware chip that can act as a "root of trust" and can support the trusted execution of a number of crypto operations. One of the things that I am currently investigating is the threat modelling (software verification) of the Trusted Software Stack (TSS) that is provided as the API for accessing the TPM - sending commands and receiving back the input from the host. One of the main assumptions is that this TSS is trusted - which, of course, is not the case in the real world but there has not been a detailed analysis of what information can be leaked by tracing what happens during the execution of this software stack.
This thesis proposes the use of eBPF to implement a set of "software hooks" for monitoring the core TPM commands when invoked by the TSS, determining whether current implementations can be considered trusted or there is the evidence of any possible security leak.
Note La tesi sara' svolta alla DTU, Copenhagen.
Scadenza validita proposta 14/03/2020 PROPONI LA TUA CANDIDATURA