Skip to main content
Springer Nature Link
Log in

Trust Extension Device: Providing Mobility and Portability of Trust in Cooperative Information Systems

  • Conference paper
On the Move to Meaningful Internet Systems 2007: CoopIS, DOA, ODBASE, GADA, and IS (OTM 2007)

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 4803))

  • 1271 Accesses

Abstract

One method for establishing a trust relationship between a server and its clients in a co-operative information system is to use a digital certificate. The use of digital certificates bound to a particular machine works well under the assumption that the underlying computing and networking infrastructure is managed by a single enterprise. Furthermore, managed infrastructures are assumed to have a controlled operational environment, including execution of a standard set of applications and operating system. These assumptions are also valid for recent proposals on establishing trust using hardware-supported systems based on a Trusted Computing Module (TPM) cryptographic microcontroller. However, these assumptions do not hold in today’s cooperative information systems. Clients are mobile and work using network connections that go beyond the administrative boundaries of the enterprise. In this paper, we propose a novel technology, called Trust Extension Device (TED), which enables mobility and portability of trust in cooperative information systems that works in a heterogeneous environment. The paper provides an overview of the technology by describing its design, a conceptual implementation and its use in an application scenario.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. TCG specification v1.1, https://www.trustedcomputinggroup.org/specs/TPM/

  2. http://changingminds.org/explanations/trust/what_is_trust.htm

  3. Satizábal, C., Páez, R., Forné, J.: Relationships: from a Hybrid Architecture to a Hierarchical Model. In: Proceedings of the First International Conference on Availability, Reliability and Security (ARES 2006)

    Google Scholar 

  4. Yang, R., He, L., Yang, S., Gary, F., Liu, F., Chang, J., Guo, M.: The Value of Hardware-Based Security Solutions and its Architecture for Security Demanding Wireless Services. Security and Management , pp.509–514 (2006)

    Google Scholar 

  5. Nepal, S., Zic, J., Kraehenbuehl, G., Jaccard, F.: A trusted system for sharing patient electronic records in autonomous distributed healthcare systems. International Journal of Healthcare Information Systems and Informatics 2(1), 14–34 (2007)

    Google Scholar 

  6. Nepal, S., Zic, J., Jaccard, F., Krachenbuehl, G.: A Tag-based Data model for privacy-preserving medical applications. In: Proceedings of EDBT IIHA Workshop, Munich, Germany, pp. 77–88 (2006)

    Google Scholar 

  7. Nepal, S., Zic, J., Krachenbuehl, G., Jaccard, F.: Secure Sharing of Electronic Patient Records, 1s t European Conference on eHealth, pp. 47–58. Fribourg, Switzerland (2006)

    Google Scholar 

  8. Jang, J., Nepal, S., Zic, J.: Establishing a Trust Relationship in Cooperative Information Systems. In: Meersman, R., Tari, Z. (eds.) Proceedings of Cooperative Information Systems (CoopIS) 2006 International Conference. LNCS, vol. 4275, pp. 426–443. Springer, Heidelberg (2006)

    Google Scholar 

  9. Nepal, S., Zic, J.: A Portable Trusted Device, Provisional Australian Patent, September (2006)

    Google Scholar 

  10. http://www.ict.csiro.au/page.php?did=14

  11. http://www.xensource.com/

  12. http://www.vmware.com/

  13. http://developer.berlios.de/projects/tpm-emulator/

  14. http://trousers.sourceforge.net/

  15. http://trustedjava.sourceforge.net/jtss/javadoc/

  16. http://fabrice.bellard.free.fr/qemu/about.html

  17. http://www.aladdin.com/eToken/

  18. Caceres, R., Carter, C., Narayanaswami, C., Raghunath, M.T.: Reincarnating PCs with Portable SoulPads. In: Proc of ACM/USENIX MobiSys, pp. 65–78 (2005)

    Google Scholar 

  19. Kennell, R., Jamieson, L.H.: Establishing the genuinity of remote computer systems. In: Proceedings of the 11th USENIX Security Symposium, USENIX, August (2003)

    Google Scholar 

  20. Seshadri, A., Perrig, A., van Doorn, L., Khosla, P.: SWAtt: SoftWare-based Attestation for embedded devices. In: Proceedings of IEEE Symposium on Security and Privacy, (May 2004)

    Google Scholar 

  21. Monrose, F., Wyckoff, P., Rubin, A.D.: Distributed execution with remote audit. In: ISOC Network and Distributed System Security Symposium, pp. 103–113 (1999)

    Google Scholar 

  22. Haldar, V., Franz, M.: Symmetric Behavior-Based Trust: A New Paradigm for Internet Computing. In: New Security Paradigms Workshop (September 2004)

    Google Scholar 

  23. Reid, J., Juan, M., Nieto, G., Dawson, E., Okamoto, E.: Privacy and Trusted Computing. In: Mařík, V., Štěpánková, O., Retschitzegger, W. (eds.) DEXA 2003. LNCS, vol. 2736, p. 383. Springer, Heidelberg (2003)

    Chapter  Google Scholar 

  24. AMD platform for trustworthy computing. WinHEC 2003, http://www.microsoft.com/whdc/winhec/papers03.mspxSept.2003

  25. Millen, J.K., Wright, R.N.: Reasoning about Trust and Insurance in a Public Key Infrastructure, 13th IEEE Computer Security Foundations Workshop(CSFW), 2000, pp. 16–22 (2000)

    Google Scholar 

  26. Garfinkel, T., Pfaff, B., Chow, J., Rosenblum, M., Boneh, D.: Terra: A virtual machine-based platform for trusted computing. In: Proceedings of Symposium on Operating System Principles (SOSP) (October 2003)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. ICT Centre PO Box 76 Epping NSW 1710, Australia

    Surya Nepal, John Zic, Hon Hwang & David Moreland

Authors
  1. Surya Nepal
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. John Zic
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Hon Hwang
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. David Moreland
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Robert Meersman Zahir Tari

Rights and permissions

Reprints and permissions

Copyright information

© 2007 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Nepal, S., Zic, J., Hwang, H., Moreland, D. (2007). Trust Extension Device: Providing Mobility and Portability of Trust in Cooperative Information Systems. In: Meersman, R., Tari, Z. (eds) On the Move to Meaningful Internet Systems 2007: CoopIS, DOA, ODBASE, GADA, and IS. OTM 2007. Lecture Notes in Computer Science, vol 4803. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-76848-7_17

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-76848-7_17

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-76846-3

  • Online ISBN: 978-3-540-76848-7

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics