User-controlled hardware security anchors: evaluation and designs
用户控制的硬件安全锚:评估和设计
基本信息
- 批准号:EP/R012598/1
- 负责人:
- 金额:$ 61.94万
- 依托单位:
- 依托单位国家:英国
- 项目类别:Research Grant
- 财政年份:2018
- 资助国家:英国
- 起止时间:2018 至 无数据
- 项目状态:未结题
- 来源:
- 关键词:
项目摘要
Many modern processors are equipped with hardware extensions that enable some kind of Trusted Execution Environment (TEE). This allows programs to run securely - protected from other programs or operating system software running on the processor. By establishing a secure interface between the user and the hardware-anchor, we can make user platforms and devices more resilient to malware and other types of cyber attacks.One of the main goals of this project is to promote and facilitate the adoption of TEE as the main trust anchor for our security architectures. As such, the security of the TEEs themselves is of paramount importance. We will perform a thorough evaluation of the security features of different TEE implementations to determine their suitability as trust anchors. This includes assessing cryptographic protocols, side-channel vulnerabilities, and implementation weaknesses.Hardware supported TEEs aim to ensure that code can execute securely. However, user interface devices (for example, a keyboard, display or touch screen) are usually not connected directly to the secure hardware, which means that the user cannot interact securely with the TEE. We will address the limitations of users interacting directly with TEEs through analysing use cases and developing secure interfaces using auxiliary devices and dedicated features.Authentication today is largely based on user supplied information like passwords or biometrics. These approaches often use information that is easy to steal or brute force. The industry has been moving towards multi-factor authentication as a means of spreading risk, but these approaches impose usability challenges while still relying on weak factors. We will investigate opportunities to leverage strong hardware-based security mechanisms to improve both the strength and usability of authentication. We will also build an architecture for designing protocols and user experiences that leverage these hardware security primitives to enhance the security, manageability, and usability of user authentication over existing approaches.The analysis and applications of our research findings will be demonstrated and implemented on suitable platforms including secure hardware, smart devices and integration with authentication tokens.
许多现代处理器都配备了支持某种可信执行环境(TEE)的硬件扩展。这使得程序可以安全地运行,不受处理器上运行的其他程序或操作系统软件的影响。通过在用户和硬件锚之间建立一个安全接口,我们可以使用户平台和设备更能抵御恶意软件和其他类型的网络攻击。该项目的主要目标之一是促进和促进TEE作为我们安全体系结构的主要信任锚的采用。因此,tee本身的安全至关重要。我们将对不同TEE实现的安全特性进行全面评估,以确定它们作为信任锚的适用性。这包括评估加密协议、侧信道漏洞和实现弱点。硬件支持的tee旨在确保代码可以安全地执行。但是,用户界面设备(例如键盘、显示器或触摸屏)通常不直接连接到安全硬件,这意味着用户不能安全地与TEE交互。我们将通过分析用例和使用辅助设备和专用功能开发安全接口来解决用户直接与tee交互的限制。如今的身份验证主要基于用户提供的信息,如密码或生物识别技术。这些方法通常使用容易窃取或暴力破解的信息。该行业一直在向多因素身份验证发展,作为分散风险的一种手段,但这些方法在仍然依赖弱因素的同时,也给可用性带来了挑战。我们将研究利用强大的基于硬件的安全机制来提高身份验证的强度和可用性的机会。我们还将构建一个架构,用于设计利用这些硬件安全原语的协议和用户体验,以增强现有方法的安全性、可管理性和用户身份验证的可用性。我们的研究结果的分析和应用将在合适的平台上进行演示和实施,包括安全硬件,智能设备和与认证令牌的集成。
项目成果
期刊论文数量(10)
专著数量(0)
科研奖励数量(0)
会议论文数量(0)
专利数量(0)
VoltPillager: Hardware-based fault injection attacks against Intel SGX Enclaves using the SVID voltage scaling interface
- DOI:
- 发表时间:2021
- 期刊:
- 影响因子:0
- 作者:Zitai Chen;G. Vasilakis;Kit Murdock;Edward Dean;David F. Oswald;Flavio D. Garcia
- 通讯作者:Zitai Chen;G. Vasilakis;Kit Murdock;Edward Dean;David F. Oswald;Flavio D. Garcia
Faulty Point Unit: ABI Poisoning Attacks on Intel SGX
- DOI:10.1145/3427228.3427270
- 发表时间:2020-12
- 期刊:
- 影响因子:0
- 作者:F. Alder;Jo Van Bulck;David F. Oswald;Frank Piessens
- 通讯作者:F. Alder;Jo Van Bulck;David F. Oswald;Frank Piessens
Computer Security - ESORICS 2022 - 27th European Symposium on Research in Computer Security, Copenhagen, Denmark, September 26-30, 2022, Proceedings, Part II
计算机安全 - ESORICS 2022 - 第 27 届欧洲计算机安全研究研讨会,丹麦哥本哈根,2022 年 9 月 26-30 日,会议记录,第二部分
- DOI:10.1007/978-3-031-17146-8_12
- 发表时间:2022
- 期刊:
- 影响因子:0
- 作者:Aldoseri A
- 通讯作者:Aldoseri A
PMFault: Faulting and Bricking Server CPUs through Management Interfaces
- DOI:10.48550/arxiv.2301.05538
- 发表时间:2023-01
- 期刊:
- 影响因子:0
- 作者:Zitai Chen;David F. Oswald
- 通讯作者:Zitai Chen;David F. Oswald
Faulty Point Unit: ABI Poisoning Attacks on Trusted Execution Environments
- DOI:10.1145/3491264
- 发表时间:2021-10
- 期刊:
- 影响因子:0
- 作者:F. Alder;Jo Van Bulck;Jesse Spielman;David F. Oswald;Frank Piessens
- 通讯作者:F. Alder;Jo Van Bulck;Jesse Spielman;David F. Oswald;Frank Piessens
{{
item.title }}
{{ item.translation_title }}
- DOI:
{{ item.doi }} - 发表时间:
{{ item.publish_year }} - 期刊:
- 影响因子:{{ item.factor }}
- 作者:
{{ item.authors }} - 通讯作者:
{{ item.author }}
数据更新时间:{{ journalArticles.updateTime }}
{{ item.title }}
- 作者:
{{ item.author }}
数据更新时间:{{ monograph.updateTime }}
{{ item.title }}
- 作者:
{{ item.author }}
数据更新时间:{{ sciAawards.updateTime }}
{{ item.title }}
- 作者:
{{ item.author }}
数据更新时间:{{ conferencePapers.updateTime }}
{{ item.title }}
- 作者:
{{ item.author }}
数据更新时间:{{ patent.updateTime }}
Mark Ryan其他文献
901-95 Stress-induced Subendocardial Underperfusion: A Potential Mechanism of Ischemia in Hypertrophic Cardiomyopathy (HCM)
- DOI:
10.1016/0735-1097(95)91572-f - 发表时间:
1995-02-01 - 期刊:
- 影响因子:
- 作者:
Lubna Choudhury;Roberto Gistri;Mark Ryan;Franco Cecchi;William J. McKenna;Paolo G. Camici - 通讯作者:
Paolo G. Camici
The impact of splenic artery embolization on the management of splenic trauma: an 8-year review
- DOI:
10.1016/j.amjsurg.2008.11.017 - 发表时间:
2009-03-01 - 期刊:
- 影响因子:
- 作者:
Akpofure Peter Ekeh;Brent Izu;Mark Ryan;Mary C. McCarthy - 通讯作者:
Mary C. McCarthy
The Effect of Fat Level of the Diet on General Nutrition XI. The Protective Effect of Varying Levels of Ethyl Linoleate Against Multiple Sublethal Doses of X-Irradiation in the Rat
- DOI:
10.1093/jn/52.4.637 - 发表时间:
1954-04-01 - 期刊:
- 影响因子:
- 作者:
Amber L.S. Cheng;Mark Ryan;Roslyn Alfin-Slater;Harry J. Deuel - 通讯作者:
Harry J. Deuel
Intensive Learning: An Answer to the Dropout Crisis
强化学习:辍学危机的答案
- DOI:
10.1177/019263659107553805 - 发表时间:
1991 - 期刊:
- 影响因子:0
- 作者:
Mark Ryan - 通讯作者:
Mark Ryan
Comparison of consistency between image guided and craniometric transcranial magnetic stimulation coil placement
图像引导与颅骨测量经颅磁刺激线圈放置的一致性比较
- DOI:
- 发表时间:
2022 - 期刊:
- 影响因子:7.7
- 作者:
I. Young;K. Osipowicz;Alana E. Mackenzie;Oliver J. Clarke;Hugh Taylor;P. Nicholas;Mark Ryan;Jonas Holle;Onur Tanglay;S. Doyen;M. Sughrue - 通讯作者:
M. Sughrue
Mark Ryan的其他文献
{{
item.title }}
{{ item.translation_title }}
- DOI:
{{ item.doi }} - 发表时间:
{{ item.publish_year }} - 期刊:
- 影响因子:{{ item.factor }}
- 作者:
{{ item.authors }} - 通讯作者:
{{ item.author }}
{{ truncateString('Mark Ryan', 18)}}的其他基金
Academic Centre of Excellence in Cyber Security Research - University of Birmingham
网络安全研究卓越学术中心 - 伯明翰大学
- 批准号:
EP/R007128/1 - 财政年份:2017
- 资助金额:
$ 61.94万 - 项目类别:
Research Grant
Academic Centre of Excellence in Cyber Security Research - University of Birmingham
网络安全研究卓越学术中心 - 伯明翰大学
- 批准号:
EP/L001802/1 - 财政年份:2013
- 资助金额:
$ 61.94万 - 项目类别:
Research Grant
Trust Domains - A framework for modelling and designing e-service infrastructures for controlled sharing of information
信任域 - 用于建模和设计电子服务基础设施以实现受控信息共享的框架
- 批准号:
TS/I002529/1 - 财政年份:2011
- 资助金额:
$ 61.94万 - 项目类别:
Research Grant
Analysing Security and Privacy Properties
分析安全和隐私属性
- 批准号:
EP/H005501/1 - 财政年份:2010
- 资助金额:
$ 61.94万 - 项目类别:
Fellowship
10th International Conference on Information and Communications Security
第十届信息与通信安全国际会议
- 批准号:
EP/G005613/1 - 财政年份:2008
- 资助金额:
$ 61.94万 - 项目类别:
Research Grant
Verifying Interoperability Requirements in Pervasive Systems
验证普及系统中的互操作性要求
- 批准号:
EP/F033540/1 - 财政年份:2008
- 资助金额:
$ 61.94万 - 项目类别:
Research Grant
Verifying anonymity and privacy properties of security protocols
验证安全协议的匿名性和隐私属性
- 批准号:
EP/E040829/1 - 财政年份:2007
- 资助金额:
$ 61.94万 - 项目类别:
Research Grant
Verifying Properties in Electronic Voting Protocols
验证电子投票协议中的属性
- 批准号:
EP/E029833/1 - 财政年份:2006
- 资助金额:
$ 61.94万 - 项目类别:
Research Grant
相似国自然基金
槲皮素控释系统调控Mettl3/Per1修复氧化应激损伤促牙周炎骨再生及机制研究
- 批准号:82370921
- 批准年份:2023
- 资助金额:48.00 万元
- 项目类别:面上项目
肿瘤翻译调控蛋白调控大肠癌细胞转移能力的信号机制研究
- 批准号:81000952
- 批准年份:2010
- 资助金额:20.0 万元
- 项目类别:青年科学基金项目
多肽树状物为载体的抗癌前体药物的合成和研究
- 批准号:81072530
- 批准年份:2010
- 资助金额:36.0 万元
- 项目类别:面上项目
植物病毒壳体"智能"纳米载体靶向肿瘤细胞的研究
- 批准号:30973685
- 批准年份:2009
- 资助金额:35.0 万元
- 项目类别:面上项目
高臭氧浓度下水稻颖花和粒重形成受阻及其成因-FACE研究
- 批准号:30871486
- 批准年份:2008
- 资助金额:29.0 万元
- 项目类别:面上项目
相似海外基金
Field-Controlled Ion-Locked Polymorphic Electronics for Hardware Security
用于硬件安全的场控离子锁定多态电子器件
- 批准号:
2132006 - 财政年份:2021
- 资助金额:
$ 61.94万 - 项目类别:
Standard Grant
Software and hardware refactoring for collaboratively-controlled wheelchair innovation
协作控制轮椅创新的软件和硬件重构
- 批准号:
401411-2010 - 财政年份:2010
- 资助金额:
$ 61.94万 - 项目类别:
University Undergraduate Student Research Awards
Computer-Delivered Interventions for Secondhand Smoke Exposure
针对二手烟暴露的计算机干预措施
- 批准号:
7896078 - 财政年份:2008
- 资助金额:
$ 61.94万 - 项目类别:
Computer-Delivered Interventions for Secondhand Smoke Exposure
针对二手烟暴露的计算机干预措施
- 批准号:
7389447 - 财政年份:2008
- 资助金额:
$ 61.94万 - 项目类别:
IVR for Automated Alcohol Screening & BI in Primary Care
用于自动酒精筛查的 IVR
- 批准号:
7295683 - 财政年份:2006
- 资助金额:
$ 61.94万 - 项目类别: