Title :
Encryption Key protection for Private Computing on Public Platforms
Author :
Morris, Thomas H. ; Nair, V.S.S.
Author_Institution :
Electr. & Comput. Eng., Mississippi State Univ., Mississippi State, MS
Abstract :
Private computing on public platforms (PCPP) is a new technology designed to enable secure and private execution of applications on remote, potentially hostile, public platforms. PCPP must secure its encryption keys to ensure that application isolation is robust and reliable. To this end we offer a protection scheme for PCPP encryption keys. In this paper we first discuss a commonly used key storage mechanism, the Linux key retention service (LKRS) and show a method for defeating this protection allowing one user to read the LKRS stored keys from another user´s processes. We then describe our PCPP key protection methodology and how it interacts with the other PCPP building blocks to isolate encryption keys even from privileged users.
Keywords :
Linux; private key cryptography; Linux key retention service; encryption key protection; key protection methodology; key storage mechanism; private computing on public platforms; Application software; Cryptography; Distributed computing; Hardware; Linux; NP-hard problem; Operating systems; Protection; Security; Switches; application isolation; key protection;
Conference_Titel :
Pervasive Computing and Communications, 2009. PerCom 2009. IEEE International Conference on
Conference_Location :
Galveston, TX
Print_ISBN :
978-1-4244-3304-9
Electronic_ISBN :
978-1-4244-3304-9
DOI :
10.1109/PERCOM.2009.4912897
