[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to main content
Springer Nature Link
Log in

Personal Secure Booting

  • Conference paper
  • First Online:
Information Security and Privacy (ACISP 2001)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 2119))

Included in the following conference series:

  • 1085 Accesses

Abstract

With the majority of security breaches coming from inside of organizations, and with the number of public computing sites, where users do not know the system administrators, increasing, it is dangerous to blindly trust system administrators to manage computers appropriately. However, most current security systems are vulnerable to malicious software modification by administrators. To solve this problem, we have developed a system called sAEGIS, which embraces a smartcard as personal secure storage for computer component hashes, and uses the hashes in a secure booting process to ensure the integrity of the computer components.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
£29.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
GBP 19.95
Price includes VAT (United Kingdom)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
GBP 35.99
Price includes VAT (United Kingdom)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
GBP 44.99
Price includes VAT (United Kingdom)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. Rootkit homepage. http://www.rootkit.com/.

  2. William A. Arbaugh. Chaining Layered Integrity Checks. PhD thesis, University of Pennsylvania, 1999.

    Google Scholar 

  3. William A. Arbaugh, David J. Farber, and Jonathan M. Smith. A secure and reliable bootstrap architecture. In 1997 IEEE Symposium on Security and Privacy, Oakland, CA, May 1997.

    Google Scholar 

  4. S. M. Bellovin and M. Merritt. Limitations of the Kerberos authentication system. In Proceedings of the Winter 1991 Usenix Conference, January 1991. ftp://research.att.com/dist/internet_security/kerblimit.usenix.ps.

  5. Eric Brewer, Paul Gauthier, Ian Goldberg, and David Wagner. Basic flaws in internet security and commerce, 1995. http://www.ao.net/netnigga/endpointsecurity.html.

  6. A. Dearle, R. di, J. Farrow, F. Henskens, D. Hulse, A. Lindstrm, S. Norris, J. Rosenberg, and F. Vaughan. Protection in the grasshopper operating system, 1994.

    Google Scholar 

  7. Dorothy Denning. Cryptography and Data Security. Addison-Wesley, 1983.

    Google Scholar 

  8. Free Software Foundation. Gnu grub, 1999. http://www.gnu.org/software/grub/grub.html.

  9. Ian Goldberg, David Wagner, Randi Thomas, and Eric Brewer. A secure environment for untrusted helper applications. In Proceedings of 6th USENIX Unix Security Symposium, July 1996.

    Google Scholar 

  10. halflife. Bypassing integrity checking systems. Phrack Magazine, September 1997. Volume 7, Issue 51, Article 9 of 17.

    Google Scholar 

  11. Peter Hazen. Flash memory boot block architecture for safe firmware updates. Technical Report AB-57, Intel, 1995. http://developer.intel.com/design/flcomp/applnots/292130.htm.

  12. Gene H. Kim and Eugene H. Spafford. The design and implementation of tripwire: A file system integrity checker. Technical report, Purdue University, 1995. CSDTR-93-071.

    Google Scholar 

  13. Paul Kocher, Joshua Jaffe, and Benjamin Jun. Introduction to differential power analysis and related attacks. Cryptography Research, 1998. http://www.cryptography.com/dpa/technical/index.html.

  14. Oliver Kommerling and Markus G. Kuhn. Design principles for tamper-resistant smartcard processors. In Proceedings of USENIX Workshop on Smartcard Technology, Chicago, May 1999.

    Google Scholar 

  15. Linux bios. http://www.acl.lanl.gov/linuxbios/.

  16. Peter A. Loscocco, Stephen D. Smalley, Patrick A. Muckelbauer, Ruth C. Taylor, S. Jeff Turner, and John F. Farrell. The inevitability of failure: The flawed assumption of security in modern computing environments. In 21st National Information Systems Security Conference, Crystal City, Virginia, October 1998. National Security Agency, NISSC. http://www.jya.com/paperF1.htm.

  17. H. Nag, R. Gotfried, D. Greenberg, C. Kim, B. Maccabe, T. Stallcup, G. Ladd, L. Shuler, S. Wheat, and D. van Dresser. Prose: Parallel real-time operating system for secure environments, 1996.

    Google Scholar 

  18. Peter G. Neumann. Architectures and formal representations for secure systems, 1996. Technical Report SRI-CSL-96-05, Computer Science Laboratory, SRI International.

    Google Scholar 

  19. Department of Defense. Trusted computer system evaluation criteria, December 1985. http://www.radium.ncsc.mil/tpep/library/rainbow/5200.28-STD.html.

  20. Openbios. http://www.freiburg.linux.de/OpenBIOS/.

  21. Jim Rees. Iso 7816 library, 1997. http://www.citi.umich.edu/projects/sinciti/smartcard/sc7816.html.

  22. Spyrus. http://www.spyrus.com/.

  23. R. Wahbe, S. Lucco, T. Anderson, and S. Graham. client software-based fault isolation, 1993.

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Center for Information Technology Integration, University of Michigan, USA

    Naomaru Itoi

  2. Department of Computer Science, University of Maryland, College Park

    William A. Arbaugh

  3. Electrical Engineering and Computer Science Department, University of Michigan, USA

    Samuela J. Pollack & Daniel M. Reeves

Authors
  1. Naomaru Itoi
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. William A. Arbaugh
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Samuela J. Pollack
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Daniel M. Reeves
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Department of Computing, Macquarie University, North Ryde, NSW, 2109, Australia

    Vijay Varadharajan  & Yi Mu  & 

Rights and permissions

Reprints and permissions

Copyright information

© 2001 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Itoi, N., Arbaugh, W.A., Pollack, S.J., Reeves, D.M. (2001). Personal Secure Booting. In: Varadharajan, V., Mu, Y. (eds) Information Security and Privacy. ACISP 2001. Lecture Notes in Computer Science, vol 2119. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-47719-5_12

Download citation

  • DOI: https://doi.org/10.1007/3-540-47719-5_12

  • Published:

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-42300-3

  • Online ISBN: 978-3-540-47719-8

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics