Advanced

Enabling Key Migration Between Non-Compatible TPM Versions

Karlsson, Linus LU and Hell, Martin LU (2016) TRUST 2016 In Trust and Trustworthy Computing 9824. p.101-118
Abstract
We consider the problem of migrating keys from TPM 1.2 to the backwards
incompatible TPM 2.0. The major differences between
the two versions introduce several challenges for deployed systems when
support for TPM 2.0 is introduced. We show how TPM 2.0 support can be
introduced while still maintaining the functionality specified by TPM 1.2,
allowing a smoother transition to the newer version. Specifically, we
propose a solution such that keys can be migrated from TPM 1.2 to TPM 2.0,
while retaining behavior with regard to e.g. authorization, migration
secrets, PCR values and CMK functionality. This is achieved by utilizing
new functionality, such as policies, in TPM 2.0. The proposed solution... (More)
We consider the problem of migrating keys from TPM 1.2 to the backwards
incompatible TPM 2.0. The major differences between
the two versions introduce several challenges for deployed systems when
support for TPM 2.0 is introduced. We show how TPM 2.0 support can be
introduced while still maintaining the functionality specified by TPM 1.2,
allowing a smoother transition to the newer version. Specifically, we
propose a solution such that keys can be migrated from TPM 1.2 to TPM 2.0,
while retaining behavior with regard to e.g. authorization, migration
secrets, PCR values and CMK functionality. This is achieved by utilizing
new functionality, such as policies, in TPM 2.0. The proposed solution is
implemented and verified using TPM emulators to ensure correctness. (Less)
Please use this url to cite or link to this publication:
author
organization
publishing date
type
Chapter in Book/Report/Conference proceeding
publication status
published
subject
in
Trust and Trustworthy Computing
volume
9824
pages
101 - 118
publisher
Springer
conference name
TRUST 2016
external identifiers
  • Scopus:84988419941
ISSN
0302-9743
ISBN
978-3-319-45571-6
DOI
10.1007/978-3-319-45572-3_6
language
English
LU publication?
yes
id
6ac43a05-7690-4cab-b647-1412074aac01
date added to LUP
2016-07-14 11:32:57
date last changed
2016-10-16 04:24:53
@misc{6ac43a05-7690-4cab-b647-1412074aac01,
  abstract     = {We consider the problem of migrating keys from TPM 1.2 to the backwards<br/>incompatible TPM 2.0. The major differences between<br/>the two versions introduce several challenges for deployed systems when<br/>support for TPM 2.0 is introduced. We show how TPM 2.0 support can be<br/>introduced while still maintaining the functionality specified by TPM 1.2,<br/>allowing a smoother transition to the newer version. Specifically, we<br/>propose a solution such that keys can be migrated from TPM 1.2 to TPM 2.0,<br/>while retaining behavior with regard to e.g. authorization, migration<br/>secrets, PCR values and CMK functionality. This is achieved by utilizing<br/>new functionality, such as policies, in TPM 2.0. The proposed solution is<br/>implemented and verified using TPM emulators to ensure correctness.},
  author       = {Karlsson, Linus and Hell, Martin},
  isbn         = {978-3-319-45571-6},
  issn         = {0302-9743},
  language     = {eng},
  pages        = {101--118},
  publisher    = {ARRAY(0xc5112c8)},
  series       = {Trust and Trustworthy Computing},
  title        = {Enabling Key Migration Between Non-Compatible TPM Versions},
  url          = {http://dx.doi.org/10.1007/978-3-319-45572-3_6},
  volume       = {9824},
  year         = {2016},
}