Title :
A Trusted Platform Module Based Anti-Forensics System
Author :
Goh, Weihan ; Leong, Peng Chor ; Yeo, Chai Kiat
Author_Institution :
Sch. of Comput. Eng., Nanyang Technol. Univ., Singapore, Singapore
Abstract :
A trusted platform module (TPM) contains a unique identity and provides a range of security functions. This paper outlines a client-server system utilizing a TPM-enabled computer to hinder forensic examination. The system allows for data confidentiality, plausible deniability, and hiding of traces that incriminating data was present on the client. The server will attest the client before allowing it to submit / receive incriminating data, and encrypted incriminating data can only be decrypted 1) by the encrypting client, and 2) if and only if the encrypting client´s platform configuration matches that during encryption. The client´s state can always be established via measurement results, and they cannot be tampered to fake attestation.
Keywords :
cryptography; antiforensics system; client-server system; data confidentiality; data incrimination; decryption; encryption; plausible deniability; security functions; traces hiding; trusted platform module; Client-server systems; Computer networks; Computer security; Cryptography; Data mining; Data security; Forensics; Hardware; Law enforcement; Text processing;
Conference_Titel :
Network and Service Security, 2009. N2S '09. International Conference on
Conference_Location :
Paris
Print_ISBN :
978-2-9532-4431-1
