Share

Bootstrapping Trust in Modern Computers

2011-08-27 Computers
Download Bootstrapping Trust in Modern Computers PDF Online Free

Author :
Release : 2011-08-27
Genre : Computers
Kind : eBook
Book Rating : 601/5 ( reviews)

GET EBOOK


Book Synopsis Bootstrapping Trust in Modern Computers by : Bryan Parno

Download or read book Bootstrapping Trust in Modern Computers written by Bryan Parno. This book was released on 2011-08-27. Available in PDF, EPUB and Kindle. Book excerpt: Trusting a computer for a security-sensitive task (such as checking email or banking online) requires the user to know something about the computer's state. We examine research on securely capturing a computer's state, and consider the utility of this information both for improving security on the local computer (e.g., to convince the user that her computer is not infected with malware) and for communicating a remote computer's state (e.g., to enable the user to check that a web server will adequately protect her data). Although the recent "Trusted Computing" initiative has drawn both positive and negative attention to this area, we consider the older and broader topic of bootstrapping trust in a computer. We cover issues ranging from the wide collection of secure hardware that can serve as a foundation for trust, to the usability issues that arise when trying to convey computer state information to humans. This approach unifies disparate research efforts and highlights opportunities for additional work that can guide real-world improvements in computer security.

Trust Extension as a Mechanism for Secure Code Execution on Commodity Computers

2014-06-01 Computers
Download Trust Extension as a Mechanism for Secure Code Execution on Commodity Computers PDF Online Free

Author :
Release : 2014-06-01
Genre : Computers
Kind : eBook
Book Rating : 451/5 ( reviews)

GET EBOOK


Book Synopsis Trust Extension as a Mechanism for Secure Code Execution on Commodity Computers by : Bryan Jeffrey Parno

Download or read book Trust Extension as a Mechanism for Secure Code Execution on Commodity Computers written by Bryan Jeffrey Parno. This book was released on 2014-06-01. Available in PDF, EPUB and Kindle. Book excerpt: As society rushes to digitize sensitive information and services, it is imperative to adopt adequate security protections. However, such protections fundamentally conflict with the benefits we expect from commodity computers. In other words, consumers and businesses value commodity computers because they provide good performance and an abundance of features at relatively low costs. Meanwhile, attempts to build secure systems from the ground up typically abandon such goals, and hence are seldom adopted. In this book, I argue that we can resolve the tension between security and features by leveraging the trust a user has in one device to enable her to securely use another commodity device or service, without sacrificing the performance and features expected of commodity systems. At a high level, we support this premise by developing techniques to allow a user to employ a small, trusted, portable device to securely learn what code is executing on her local computer. Rather than entrusting her data to the mountain of buggy code likely running on her computer, we construct an on-demand secure execution environment which can perform security-sensitive tasks and handle private data in complete isolation from all other software (and most hardware) on the system. Meanwhile, non-security-sensitive software retains the same abundance of features and performance it enjoys today. Having established an environment for secure code execution on an individual computer, we then show how to extend trust in this environment to network elements in a secure and efficient manner. This allows us to reexamine the design of network protocols and defenses, since we can now execute code on endhosts and trust the results within the network. Lastly, we extend the user's trust one more step to encompass computations performed on a remote host (e.g., in the cloud). We design, analyze, and prove secure a protocol that allows a user to outsource arbitrary computations to commodity computers run by an untrusted remote party (or parties) who may subject the computers to both software and hardware attacks. Our protocol guarantees that the user can both verify that the results returned are indeed the correct results of the specified computations on the inputs provided, and protect the secrecy of both the inputs and outputs of the computations. These guarantees are provided in a non-interactive, asymptotically optimal (with respect to CPU and bandwidth) manner. Thus, extending a user's trust, via software, hardware, and cryptographic techniques, allows us to provide strong security protections for both local and remote computations on sensitive data, while still preserving the performance and features of commodity computers.

Trust Extension as a Mechanism for Secure Code Execution on Commodity Computers

2014-06-01 Computers
Download Trust Extension as a Mechanism for Secure Code Execution on Commodity Computers PDF Online Free

Author :
Release : 2014-06-01
Genre : Computers
Kind : eBook
Book Rating : 790/5 ( reviews)

GET EBOOK


Book Synopsis Trust Extension as a Mechanism for Secure Code Execution on Commodity Computers by : Bryan Jeffrey Parno

Download or read book Trust Extension as a Mechanism for Secure Code Execution on Commodity Computers written by Bryan Jeffrey Parno. This book was released on 2014-06-01. Available in PDF, EPUB and Kindle. Book excerpt: As society rushes to digitize sensitive information and services, it is imperative to adopt adequate security protections. However, such protections fundamentally conflict with the benefits we expect from commodity computers. In other words, consumers and businesses value commodity computers because they provide good performance and an abundance of features at relatively low costs. Meanwhile, attempts to build secure systems from the ground up typically abandon such goals, and hence are seldom adopted. In this book, I argue that we can resolve the tension between security and features by leveraging the trust a user has in one device to enable her to securely use another commodity device or service, without sacrificing the performance and features expected of commodity systems. At a high level, we support this premise by developing techniques to allow a user to employ a small, trusted, portable device to securely learn what code is executing on her local computer. Rather than entrusting her data to the mountain of buggy code likely running on her computer, we construct an on-demand secure execution environment which can perform security-sensitive tasks and handle private data in complete isolation from all other software (and most hardware) on the system. Meanwhile, non-security-sensitive software retains the same abundance of features and performance it enjoys today. Having established an environment for secure code execution on an individual computer, we then show how to extend trust in this environment to network elements in a secure and efficient manner. This allows us to reexamine the design of network protocols and defenses, since we can now execute code on endhosts and trust the results within the network. Lastly, we extend the user's trust one more step to encompass computations performed on a remote host (e.g., in the cloud). We design, analyze, and prove secure a protocol that allows a user to outsource arbitrary computations to commodity computers run by an untrusted remote party (or parties) who may subject the computers to both software and hardware attacks. Our protocol guarantees that the user can both verify that the results returned are indeed the correct results of the specified computations on the inputs provided, and protect the secrecy of both the inputs and outputs of the computations. These guarantees are provided in a non-interactive, asymptotically optimal (with respect to CPU and bandwidth) manner. Thus, extending a user's trust, via software, hardware, and cryptographic techniques, allows us to provide strong security protections for both local and remote computations on sensitive data, while still preserving the performance and features of commodity computers.

Computer Security – ESORICS 2017

2017-09-01 Computers
Download Computer Security – ESORICS 2017 PDF Online Free

Author :
Release : 2017-09-01
Genre : Computers
Kind : eBook
Book Rating : 992/5 ( reviews)

GET EBOOK


Book Synopsis Computer Security – ESORICS 2017 by : Simon N. Foley

Download or read book Computer Security – ESORICS 2017 written by Simon N. Foley. This book was released on 2017-09-01. Available in PDF, EPUB and Kindle. Book excerpt: The two-volume set, LNCS 10492 and LNCS 10493 constitutes the refereed proceedings of the 22nd European Symposium on Research in Computer Security, ESORICS 2017, held in Oslo, Norway, in September 2017. The 54 revised full papers presented were carefully reviewed and selected from 338 submissions. The papers address issues such as data protection; security protocols; systems; web and network security; privacy; threat modeling and detection; information flow; and security in emerging applications such as cryptocurrencies, the Internet of Things and automotive.

Smart Computing and Informatics

2017-10-28 Technology & Engineering
Download Smart Computing and Informatics PDF Online Free

Author :
Release : 2017-10-28
Genre : Technology & Engineering
Kind : eBook
Book Rating : 475/5 ( reviews)

GET EBOOK


Book Synopsis Smart Computing and Informatics by : Suresh Chandra Satapathy

Download or read book Smart Computing and Informatics written by Suresh Chandra Satapathy. This book was released on 2017-10-28. Available in PDF, EPUB and Kindle. Book excerpt: This volume contains 68 papers presented at SCI 2016: First International Conference on Smart Computing and Informatics. The conference was held during 3-4 March 2017, Visakhapatnam, India and organized communally by ANITS, Visakhapatnam and supported technically by CSI Division V – Education and Research and PRF, Vizag. This volume contains papers mainly focused on smart computing for cloud storage, data mining and software analysis, and image processing.

You may also like...