March 12th, 2010 at 03:01pm
Under TNC
The latest bit of good news about Trusted Computing Group standards taking over the world has been the announcement by the Internet Engineering Task Force (IETF), the consortium that basically decides the standard protocols for the internet, that they have accepted and published two of the Trusted Network Connect (TNC) work group’s standards.
The two standards [...]
Continue Reading TNC standards become IETF standards!
Tags: ietf
By Ken Y-N
March 11th, 2010 at 04:00pm
Under Advocacy
I just discovered that there’s a Wave Systems channel out there, and their latest video is on Full Disk Encryption and Wave Systems management software.
Continue Reading Wave Systems also have a YouTube video channel
Tags: wave, youtube
By Ken Y-N
March 10th, 2010 at 04:09pm
Under General
As well as mixing up Trusted Computing and Trustworthy Computing, the article by Gary Richmond had this bit of badly-written hyperbole that gave me a laugh:
Barely a day goes by when you switch on your computer, plug into the web and come across yet another deranged scheme to restrict freedom in the name of security, [...]
Continue Reading Free Software Magazine lays into trusted computing, Microsoft, and just about everything else
Tags: ranting
By Ken Y-N
March 10th, 2010 at 03:59pm
Under Virtualisation
Steve Riley, Amazon Web Services (AWS) evangelist, at the recent RSA Conference discussed managed encryption services. He talked about having either a hardware security module (HSM) or a software key store in the cloud accessible via an API. There was this comment from the floor:
A security strategist with a well-known online payment service said that [...]
Continue Reading Amazon adding TPM-like facilities to the cloud?
Tags: amazon
By Ken Y-N
March 8th, 2010 at 03:07pm
Under MTM
I recently came across the paper "A Novel Protocol for Software Authentication" by Rongyu He, Zheng Qin and Shaojie Wu, and I’ve just spent a while reviewing it, and it seems to have a massive security hole in it. The subject is a proposed improvement to the Mobile Trusted Module specifications. First, the abstract says:
The [...]
Continue Reading Reviewing "A Novel Protocol for Software Authentication"
Tags: paper, review, urim
By Ken Y-N
March 6th, 2010 at 05:22pm
Under TPM
I’m pleased to see another big vote in favour of the Trusted Computing Group’s Trusted Platform Module, with the announcement at the RSA Conference by Will Drewey of Google that all Google netbook products will ship with a TPM on board and a trusted boot path. The experienced user can disable all this, but they [...]
Continue Reading Google’s Chrome OS netbooks to feature TPMs
Tags: chrome, google, netbook
By Ken Y-N
March 3rd, 2010 at 03:07pm
Under General
Whilst searching for something completely different I happened to come across a YouTube channel from TCGadmin that features a few videos of TCG demonstrations, such as this one:
Continue Reading Trusted Computing the Movie
Tags: youtube
By Ken Y-N
March 2nd, 2010 at 05:28pm
Under Storage
The official TCG blog recently published an extensive list of many of the available self-encrypting drives that follow the TCG’s Opal standard. As I’ve said a number of times before, self-encrypting drives is a no-brainer option, so with a list of four drive manufacturers and four vendors of management software there’s lots to choose from.
Continue Reading Looking for a self-encrypting drive?
Tags: opal
By Ken Y-N
February 27th, 2010 at 03:27pm
Under General
Here’s another interesting device from IronKey, this time partnering with Becrypt to implement a portable secure virtual operating system for access to corporate networks for mobile workers. The heart of the device is:
Trusted Client is a cost-effective, secure mobility solution that uses its own hardened and encrypted operating system. It solves the problem of allowing [...]
Continue Reading Becrypt and IronKey partner for secure mobile environments
Tags: becrypt, ironkey
By Ken Y-N
February 26th, 2010 at 03:18pm
Under General
A recent press release from IronKey discussed their Trusted Access for Banking solution, a dongle that plugs into any PC and on entering the correct password (only a password, not multi-factor authentication?), performs a health check of the host PC and launches a virtualised operating system with a secure browser, and also uses one time [...]
Continue Reading Trusted access for corporate banking solution from IronKey
Tags: ironkey, trusted access for banking
By Ken Y-N