| Platinum Sponsors: |
 |
|
|
|
|
|
|
 |
|
|
 |
 |
|
|
 |
 |
.gif){kind=logo} |
Talk: Innovative Applications of Trusted Computing Platform
by Robert Deng, Singapore
Management University
Abstract: Most existing cryptographic/security protocols make very weak assumptions about the computing platforms. As a result, they are often too complicated or incur too high an overhead for the protocols to be useful in real world. This lecture introduces a new approach to security protocol design where we study security problems from a combined view of cryptography and trusted computing with an aim of designing more efficient or novel security solutions. We will illustrate the basic idea of the approach with several specific examples in user authentication, data security and system security.
Talk: Daoli: Grid Security from Two Levels of Virtualization
by Wenbo Mao, EMC Research, China
Joint work with Fudan University, Wuhan University and Huazhong
University of Science and Technology
Abstract: The service oriented architecture of grid computing has been thoughtfully engineered to achieve a service level virtualization: not only should a grid be a virtual machine (also known as a virtual organization VO) of unbounded computational power and storage capacity, but also should the virtual machine be serviceable in all circumstances independent from serviceability of any of its component. At present, a grid VO as a result of service level virtualization only is more or less confined to participants from scientific computing communities, i.e., having a limited scale. It is widely agreed that for a grid to pool resources of a truly unbounded scale, commercial enterprises and in particular server-abundant financial institutions, should "go for grid", i.e., open up their servers for joining grid VO constructions. We believed that it is today's inadequate strength of the grid security practice that is the major hurdle to prevent commercial organizations from serving the grid.
This lecture presents the work of Daoli which is our attempt to strengthen grid security. We identify that a security service which we name "behavior conformity" be desirable for grid computing. Behavior conformity for grid computing is an assurance that ad-hoc related principals (users, platforms or instruments) forming a grid VO must each act in conformity with the rules for the VO constitution. We apply Trusted Computing technologies to achieve another level of platform virtualization within operating systems. With these two levels of virtualization it is possible to build a grid of truly unbounded scale by VO including servers from commercial organizations.
The lecture will be accompanied by a Proof-of-Concept demo-show of the Daoli System.
Talk: Trusted Computing
Fundamentals
by Graeme Proudler, HP Laboratories,
Bristol, UK
Abstract: This lecture will summarise the primitive mechanisms of trust, how those primitives are provided by Trusted Platforms, and then describe the basic architecture and features of TCG technology.
Talk: Towards Trusted Grid
Computing
by Andrew Martin
Abstract: For Grid computing to succeed, the users need to be able to invest trust in systems they have never encountered before, and may not be able to identify individually. This talk will explain, with examples, some of the security requirements which arise in Grid computing, and some of the long-standing solutions to these. We will see that existing Grid systems have a large gap when it comes to system isolation, secure data storage, and attested execution environments. The technologies of Trusted Infrastructure have much potential to address those problems: we will explain our practical and long-term approaches.
Talk: BitLocker Drive Encryption
by
Tuomas Aura, Microsoft Research, Cambridge, UK
Abstract: Businesses are increasingly worried about leaks of confidential data that can results from the theft, accidental loss and decommissioning of data-storage devices, such as laptops and server hard disks. Previous secure storage technologies have not gained wide acceptance and often have serious shortcomings. In this lecture, I explain the security requirements for encrypted storage and give an overview of the previous encrypted storage systems including their weaknesses. I’ll then explain how trusted computing technologies enable a new trade-off between security and usability, which makes the deployment of data encryption much more attractive to business users. These mechanisms are available in the BitLocker file encryption in Windows Vista and will be in the upcoming Longhorn Server.
Talk: Trusted Computing on
Linux : Tweaks and Tips
by Seiji Munetoh, IBM Research
Abstract: The setup procedure of Trusted Computing on Linux is introduced at this lecture. The detail of TCG capabilities supported by BIOS, bootloader, Linux-kernel, Xen-hipervisor and TSS (TrouSerS) are also explained. An integrity and configuration management is still a difficult problem, we consider it based on above actual implementation.
Talk:
Trusted Full Disk Encryption Solution
by Dr Wang Zi , Sinosun Technology Ltd
Abstract: With more and more mobile computers used, the risk of data theft is growing rapidly. The need for secure data storage, especially on hard-disks, is thus becoming a major concern. Many available solutions encrypt only a part of the hard drive, leaving key files such as the operating system vulnerable. Full-disk encryption (FDE) is a process that encrypts everything on a disk without user action. This includes the operating system, swap file and any temporary files. These last two can often leak important confidential data to a hacker.
So why don't we encrypt our data as a matter of course? Full Disk Encryption (FDE) provides a secure basis for keeping data confidential – whether it is corporate or personal. If your laptop is stolen, FDE protects all of the information stored on it. This can include your company’s own intellectual property, as well as the confidential or private information belonging to others, to which you or your corporation has been entrusted and for which your company is legally responsible.
FDE additionally reduces the cost of security management, as hard disks can be repurposed or discarded with no risk of residual data being exposed.
FDE can give user a lot of values, but some fail to recognize that encryption is only as secure as the authentication used to access it. Encryption without strong authentication is like locking your door and then leaving the key in the lock while you walk away. So we bring forward Trusted Full Disk Encryption. By virtue of Trusted Platform Module (TPM), we can realize strong authentication and secure key management. TPM is a hardware chip embedded on the motherboard, so need no extra external device for users, at the same time, TPM is more and more popular.
Talk:
Open TC
by Dirk Kuhlmann, HP Laboratories
Abstract: OpenTC is a industrial-academic research project funded by the European commission. It addresses combinations of Trusted Computing technology with virtualizaton layers based on Open Source software.
We will give an overview of the project's vision, its technical core concepts and its architecture. The current state of the design and implementation efforts will be presented. We will outline the promises and challenges encountered when basing a trust and security infrastructure on Open Source software, and discuss options for international cooperation in this area.
Talk:
Building Trust on the Internet via Global Collaboration
by Prof Sihan Qing, Institute of Software, Chinese Academy of
Sciences
Abstract: Internet has changed our daily life. It emerged as an information highway connecting more and more computers and people. We are witnessing a change of our society towards e-commerce, e-business and e-government and towards an increasing reliance on the Internet. In this presentation, I will cover the following topics: (1) Current status of the Internet applications and its security concerns; (2) Building trust on the Internet via global collaboration; (3) Some important technical issues, focusing on the discussion of security models and covert channel analysis, and (4) China’s contribution to the development of information security standards.
Talk:
Trusted Infrastructure Technology
by Vijay Varadharajan,
Macquarie University, Australia
Abstract: The notion of trust has long played a significant role in the development of secure distributed systems and services. A key design issue is the specification and management of security policies and their use in secure decision making. In this lecture, we will begin by first revisiting trusted computing technology and the need for higher level property based abstraction for specifying polices in trusted computing based systems. We will explore different levels of granularity of such policies and consider mechanisms for negotiation of these policies in the context of web service environment. Then we will go to argue the need for the trust policies to incorporate not only the “hard trust” properties (such as those based on state and credentials) but also “soft trust” properties (such as those based on reputation). We will consider a hybrid trust model comprising both “hard” and “soft” trust and describe the implementation of such a hybrid trust model in the context of a mobile agent system.
Talk: Trusted Full Disk Encryption Solution
by Dr Wang Zi,
Sinosun Technology Ltd
Abstract: With more and more mobile computers used, the risk of data theft is growing rapidly. The need for secure data storage, especially on hard-disks, is thus becoming a major concern. Many available solutions encrypt only a part of the hard drive, leaving key files such as the operating system vulnerable. Full-disk encryption (FDE) is a process that encrypts everything on a disk without user action. This includes the operating system, swap file and any temporary files. These last two can often leak important confidential data to a hacker.
So why don't we encrypt our data as a matter of course? Full Disk Encryption (FDE) provides a secure basis for keeping data confidential – whether it is corporate or personal. If your laptop is stolen, FDE protects all of the information stored on it. This can include your company’s own intellectual property, as well as the confidential or private information belonging to others, to which you or your corporation has been entrusted and for which your company is legally responsible. FDE additionally reduces the cost of security management, as hard disks can be repurposed or discarded with no risk of residual data being exposed. FDE can give user a lot of values, but some fail to recognize that encryption is only as secure as the authentication used to access it. Encryption without strong authentication is like locking your door and then leaving the key in the lock while you walk away. So we bring forward Trusted Full Disk Encryption. By virtue of Trusted Platform Module (TPM), we can realize strong authentication and secure key management. TPM is a hardware chip embedded on the motherboard, so need no extra external device for users, at the same time, TPM is more and more popular.
Talk: Towards Trusted Grid
Computing
by Andrew Martin, Oxford University
Abstract: For Grid computing to succeed, the users need to be able to invest trust in systems they have never encountered before, and may not be able to identify individually. This talk will explain, with examples, some of the security requirements which arise in Grid computing, and some of the long-standing solutions to these. We will see that existing Grid systems have a large gap when it comes to system isolation, secure data storage, and attested execution environments. The technologies of Trusted Infrastructure have much potential to address those problems: we will explain our practical and long-term approaches.
Talk: TCG-related
activities in Japan - JEITA TC Committee
by Dr Hisanori Mishima, Hitachi
Abstract: From January 2007, TCG vendors in Japan organized a special interest group among TCG members for discussing TCG technology and use cases. We introduce our group's overview and activities. We would like to introduce one of our discussing items, "new TCG usage cases". This will help all of us to start considering how TCG will change our today's IT systems.
| Event Co-ordinator: |
| Richard Brown (HP Labs, Bristol) |
| Director: |
| Dr Wenbo Mao EMC Research China |
| Co-Directors: |
| Professor Sihan Qing (Chinese Academy of Sciences) |
| Professor Hideki Imai (AIST) |
| Boris Balacheff (HP Labs, Bristol) |
| Sponsors: |
| HP, AIST Japan, Jetway, Sinosun, RSA, SMU, EMC, Intel, TCG |
| Local Organizer: |
| Onets |
| Confirmed Speakers: |
| Chinese Industry Presentation |
| Dr Hisanori Mishima Japanese Industry Trusted Computing Activities |
| David Grawrock
Intel |
| Tuomas Aura Microsoft |
| Ahmad-Reza Sadeghi University of Bochum |
| Dirk Kuhlmann HP Labs - Open TC |
| Graeme Proudler HP Labs |
| Robert Deng Singapore Management University |
| Vijay Varadharajan Macquarie University, Australia |
| Wenbo Mao EMC |
| Seiji Munetoh IBM Research |
| Dr Wang Zi Sinosun Technology Ltd |
| Dr Andrew Martin Oxford University, UK |
|
||||||||||
Speakers |
Lecture Abstracts |
Agenda |
Visitor Info |
Registration *CLOSED* |
Request for Sponsorship *CLOSED* |
Payment Details |
Chinese Version |
Back to Home | ||
| Platinum Sponsors: |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|