Scribd Logo
Upload

Welcome to Scribd!

  • FG.8 - Activity 1 Copian

    Uploaded by

    Jessa Mae Copian
    1 views5 pages

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    1 views5 pages

    FG.8 - Activity 1 Copian

    Uploaded by

    Jessa Mae Copian

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 5

    Jessa Mae Copian

    1. Trusted Platform Module (TPM) is a technology designed to enhance the security


    capabilities of a computer system by providing hardware-based security features. TPM is
    typically implemented as a dedicated microcontroller chip on the motherboard or as a
    firmware-based solution integrated into the system's chipset.

    One of the key functionalities of TPM is its ability to generate, store, and control the use
    of cryptographic keys. These keys are used for various security operations, such as
    encrypting and decrypting sensitive data, verifying the integrity of software, and
    establishing secure communication channels. By keeping the keys within the TPM's
    secure environment, they are protected from unauthorized access or tampering.

    Another important aspect of TPM is its ability to ensure platform integrity. TPM achieves
    this by using metrics or measurements to establish a baseline of the system's initial
    state, commonly referred to as the "root of trust." The TPM can then continuously
    monitor the system for any changes or deviations from this trusted state. If any
    unauthorized modifications or tampering attempts are detected, the TPM can raise alerts
    or take appropriate actions to mitigate the potential security risks.

    TPM also provides platform device authentication using its RSA key. This means that the
    TPM can verify the identity and authenticity of various hardware components, such as
    network cards or storage devices, by digitally signing their certificates. This feature helps
    prevent unauthorized devices from accessing or compromising the system.

    In terms of security benefits, TPM can help protect against various threats. For example,
    it can reduce the risk of firmware attacks, where malicious actors attempt to compromise
    the system's firmware to gain unauthorized access or control. TPM can also help guard
    against ransomware attacks by storing encryption keys securely, making it harder for
    attackers to encrypt or manipulate critical data.

    Additionally, TPM can help mitigate dictionary and phishing attacks. By securely storing
    user authentication credentials and performing cryptographic operations, TPM can
    prevent attackers from easily obtaining or manipulating sensitive information.
    Lastly, TPM can play a role in protecting software licenses. It can securely store digital
    rights management (DRM) keys or licenses, ensuring that only authorized users or
    systems can access and use the licensed software. This helps prevent unauthorized
    copying, distribution, or use of software, providing a level of assurance for software
    vendors.

    Overall, TPM serves as an important component in enhancing the security posture of


    computer systems by offering hardware-based security functionalities, protecting
    cryptographic keys, ensuring platform integrity, providing device authentication, and
    safeguarding software licenses.

    2. Trusted Platform Module (TPM) is a technology that enhances the security capabilities of
    computer systems by providing hardware-based security functionalities. It consists of
    several components, including storage, execution, and security enablement. TPM
    communicates with the central microprocessor using Low Pin Count (LPC) and offers
    secure and non-volatile storage for storing sensitive information such as cryptographic
    keys, certificates, and system measurements. TPM also provides security artifacts like
    dedicated storage areas for keys, key management operations, and a random number
    generator (RNG). These components work together to protect against unauthorized
    access, ensure platform integrity, and support secure cryptographic operations.

    ● Storage: TPM includes secure and non-volatile storage for storing sensitive information.
    This storage is used to store cryptographic keys, certificates, and measurements of
    system components. The data stored in TPM's storage is protected from unauthorized
    access or tampering. This ensures that sensitive information, such as private keys,
    remains within the secure perimeter of the TPM and cannot be easily stolen or
    compromised.
    ● Execution: TPM communicates with the central microprocessor of the computer system
    using a communication protocol called Low Pin Count (LPC). This allows the TPM to
    interact with the system's processor and execute various security operations. The
    execution component of TPM enables the TPM to perform cryptographic operations,
    establish secure communication channels, and enforce security policies.
    ● Security Enablement: TPM provides security enablement features that enhance the
    overall security of the system. One of the key structures in TPM is the configuration
    registers known as Platform Configuration Registers (PCRs). PCRs are responsible for
    maintaining the state of the system. When a module is called, the PCRs are updated by
    concatenating the old values with the cryptographic hash value of the software. This
    process helps ensure the integrity of the system and detect any unauthorized changes
    or tampering attempts.

    3. Trusted Platform Module (TPM) is designed to enhance the security and trustworthiness
    of computer systems. By incorporating a TPM, organizations and individuals can achieve
    the following benefits:

    ● Identity and Device Authentication: TPM helps prove a user's identity and
    authenticate their device, ensuring that only authorized users and trusted devices
    can access the system.
    ● Prevention of Threats: TPM aids in the prevention of threats like firmware and
    ransomware attacks, verifying firmware integrity and securely storing
    cryptographic keys to protect against unauthorized access and data
    manipulation.
    ● Protection against Tampering and Unauthorized Access: TPM provides secure
    storage, safeguarding sensitive information and preventing unauthorized access,
    reducing the risk of data breaches and information leakage.
    ● Integrity Verification: TPM enables continuous monitoring and verification of the
    system's integrity, detecting any unauthorized changes or tampering attempts.
    ● Greater Platform Dependability: By utilizing TPM, the overall trustworthiness and
    reliability of the system are enhanced, making it especially valuable in
    environments handling confidential data or sensitive information.

    In summary, TPM enhances security, ensures authentication, protects against threats,


    prevents tampering and unauthorized access, verifies system integrity, and enhances
    platform dependability.
    4. Trusted Platform Module (TPM) is a technology that enables devices to produce
    cryptographic keys and encrypt them, ensuring that only the TPM can decode or decrypt
    the keys. This process, often referred to as key wrapping or tying a key, significantly
    enhances the security of the cryptographic keys.

    Cryptographic keys are sequences of characters used within encryption techniques to


    transform data into a seemingly random and secure form. Similar to a physical key that
    locks and unlocks a door, cryptographic keys act as digital locks, sealing the data and
    ensuring that only the authorized entity with the correct key has the authority to unlock
    and access the data.

    In the context of devices equipped with TPM, such as laptops or personal computers, the
    TPM can generate cryptographic keys and encrypt them. The encryption process
    secures the keys, making them unreadable and inaccessible to unauthorized parties.
    Importantly, the keys can only be decrypted by the specific TPM that encrypted them,
    ensuring that only the trusted TPM can access the original keys.

    By leveraging TPM-enabled devices, cryptographic keys can be created and securely


    encrypted, allowing for strong data protection with authentication. This means that even
    if the encrypted keys are intercepted or accessed by unauthorized individuals, they
    cannot be deciphered without the TPM. This adds an additional layer of security to
    sensitive data, ensuring that it remains confidential and inaccessible to unauthorized
    entities.

    5. The Trusted Computing Group (TCG) is a global consortium consisting of technology


    companies that are dedicated to developing and promoting open standards for trusted
    computing. TCG members collaborate to create and maintain specifications and
    standards related to trusted computing technologies, including the Trusted Platform
    Module (TPM).

    With approximately 120 member organizations, the TCG serves as an international de


    facto standards group. It focuses on developing specifications for TPMs in PCs, trusted
    modules for various devices, trusted infrastructure requirements, as well as APIs and
    protocols needed to establish and maintain a trusted computing environment.
    The TCG's work involves the collective efforts of its member companies, who contribute
    their expertise to define and refine the standards. Once these standards are finalized,
    they are made available to the broader technological community. Interested parties can
    access and download the standards from the TCG's official website, ensuring
    transparency and accessibility for implementation and adoption.

    By developing and maintaining these open standards, the TCG facilitates interoperability
    and compatibility among different trusted computing technologies and solutions. The
    standards created by the TCG play a crucial role in guiding the design, development,
    and deployment of TPMs and other trusted computing components, fostering trust,
    security, and reliability across various devices and platforms.

    REFERENCES:

    Özkan, Akif. (2014). Implementation of a Lightweight Trusted Platform Module.x`


    What is a Trusted Platform Module (TPM)? Why is it Important? (n.d.). Retrieved from
    WhatIs.com website: https://www.techtarget.com/whatis/definition/trusted-platform-module-TPM

    Dansimp. (n.d.). Trusted Platform Module (Windows). Retrieved from
    learn.microsoft.com website:
    https://learn.microsoft.com/en-us/windows/security/information-protection/tpm/trusted-platform-
    module-top-node

    Trusted Computing Group. (n.d.). Trusted Platform Module (TPM) Summary. Retrieved
    from Trusted Computing Group website:
    https://trustedcomputinggroup.org/resource/trusted-platform-module-tpm-summary/

    What Is a TPM in Security? Trusted Platform Modules Explained. (2021, July 26).
    Retrieved from Hashed Out by The SSL StoreTM website:
    https://www.thesslstore.com/blog/what-is-tpm-security-trusted-platform-modules-explained/

    You might also like