The trusted execution module: Commodity general-purpose trusted computing

V. Costan, L.F.G. Sarmenta, M. Van Dijk, S. Devadas

Research output: Chapter in Book / Report / Conference proceedingConference contributionAcademicpeer-review

Abstract

This paper introduces the Trusted Execution Module (TEM); a high-level specification for a commodity chip that can execute user-supplied procedures in a trusted environment. The TEM is capable of securely executing partially-encrypted procedures/closures expressing arbitrary computation. These closures can be generated by any (potentially untrusted) party who knows the TEM's public encryption key. Compared to a conventional smartcard, which is typically used by pre-programming a limited set of domain- or application- specific commands onto the smartcard, and compared to the Trusted Platform Module (TPM), which is limited to a fixed set of cryptographic functions that cannot be combined to provide general-purpose trusted computing, the TEM is significantly more flexible. Yet we present a working implementation using existing inexpensive Javacard smartcards that does not require any export-restricted technology. The TEM's design enables a new style of programming, which in turn enables new applications. We show that the TEM's guarantees of secure execution enable exciting applications that include, but are not limited to, mobile agents, peer-to-peer multiplayer online games, and anonymous offline payments. © IFIP International Federation for Information Processing 2008.
Original languageEnglish
Title of host publicationSmart Card Research and Advanced Applications - 8th IFIP WG 8.8/11.2 International Conference, CARDIS 2008, Proceedings
Pages133-148
DOIs
Publication statusPublished - 2008
Externally publishedYes
Event8th IFIP WG 8.8/11.2 International Conference on Smart Card Research and Advanced Applications, CARDIS 2008 - , United Kingdom
Duration: 8 Sept 200811 Sept 2008

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference8th IFIP WG 8.8/11.2 International Conference on Smart Card Research and Advanced Applications, CARDIS 2008
Country/TerritoryUnited Kingdom
Period8/09/0811/09/08

Fingerprint

Dive into the research topics of 'The trusted execution module: Commodity general-purpose trusted computing'. Together they form a unique fingerprint.

Cite this