Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

Runtime firmware product lines using TPM2.0

: Fuchs, Andreas; Krauß, Christoph; Repp, Jürgen


De Capitani di Vimercati, Sabrina ; International Federation for Information Processing -IFIP-, Technical Committee Security and Privacy Protection in Information Processing Systems:
ICT systems security and privacy protection. 32nd IFIP TC 11 International Conference, SEC 2017 : Rome, Italy, May 29-31, 2017; Proceedings
Cham: Springer International Publishing, 2017 (IFIP advances in information and communication technology 502)
ISBN: 978-3-319-58468-3 (Print)
ISBN: 978-3-319-58469-0 (Online)
ISBN: 3-319-58468-5
International Conference on ICT Systems Security and Privacy Protection (SEC) <32, 2017, Rome>
Conference Paper
Fraunhofer SIT ()

Runtime firmware product lines enable the generation of unified firmware images, i.e., a single firmware with several features can be used on several models. The device itself decides whether to unlock a feature or not. However, an attacker could alter their model and upgrade it to a higher-level model. In this paper, we propose an approach for secure runtime firmware product lines. Unified firmware images can be provisioned to a whole series of products while preventing unauthorized feature activation. Our approach is based on a Trusted Platform Module (TPM) 2.0, acting as security anchor using several new TPM 2.0 functionalities. The feasibility is shown in a proof-of-concept implementation.