Resources
Identity Use Cases & Scenarios.- FIDIS Deliverables.
- Identity of Identity.
- Interoperability.
- Profiling.
- Forensic Implications.
- HighTechID.
- D3.1: Overview on IMS.
- D3.2: A study on PKI and biometrics.
- D3.3: Study on Mobile Identity Management.
- D3.5: Workshop on ID-Documents.
- D3.6: Study on ID Documents.
- D3.7: A Structured Collection on RFID Literature.
- D3.8: Study on protocols with respect to identity and identification – an insight on network protocols and privacy-aware communication.
- D3.9: Study on the Impact of Trusted Computing on Identity and Identity Management.
- D3.10: Biometrics in identity management.
- D3.11: Report on the Maintenance of the IMS Database.
- D3.15: Report on the Maintenance of the ISM Database.
- D3.17: Identity Management Systems – recent developments.
- D12.1: Integrated Workshop on Emerging AmI Technologies.
- D12.2: Study on Emerging AmI Technologies.
- D12.3: A Holistic Privacy Framework for RFID Applications.
- D12.4: Integrated Workshop on Emerging AmI.
- D12.5: Use cases and scenarios of emerging technologies.
- D12.6: A Study on ICT Implants.
- D12.7: Identity-related Crime in Europe – Big Problem or Big Hype?.
- D12.10: Normality Mining: Results from a Tracking Study.
- Privacy and legal-social content.
- Mobility and Identity.
- Other.
- IDIS Journal.
- FIDIS Interactive.
- Press & Events.
- In-House Journal.
- Booklets
- Identity in a Networked World.
- Identity R/Evolution.
D3.9: Study on the Impact of Trusted Computing on Identity and Identity Management
 |
Title: OPERATING SYSTEMS SUPPORT AND SECURE PLATFORMS |
 |
Operating Systems Support and Secure Platforms
Microsoft Next Generation Secure Computing Base (NGSCB)
Microsoft Corporation (http://www.microsoft.com) is an Initial Promoter Member of the TCG. Microsoft planned to integrate in their latest operating system, Windows Vista, (formerly known as Longhorn) security features based on a new software architecture named Next Generation Secure Computing Base (NGSCB) [77]. It would provide native support for TCG 1.2 compliant TPM hardware including TPM management features and TPM based file and folder encryption. Older TPM versions will only be supported through third party TSS implementations.
Originally, Windows Vista was designed in a way to contain a security kernel, named Nexus, which aims at providing a secure computing base that runs in parallel to the regular Windows environment. This enables the execution of traditional Windows software and Nexus security enhanced software. Nexus would provide features such as strong process isolation, sealed storage which enables applications to lock information so that it can only be accessed by themselves and a secure path to and from the user by providing secure channels from the keyboard or mouse to the Nexus enhanced application and from the Nexus enhanced application to the screen. It also offers attestation that provides assurance to third parties that a piece of data has been created and signed by a secure application. In order to provide these features, Microsoft’s NGSCB extended the features defined in the TCG Specifications including changes to secure booting, hardware like memory controllers and CPUs to enable strong process isolation and changes to input and output devices that enable a secure path from and to the user.
However, in May 2004, Microsoft decided to reconsider the security features of NGSCB, and Windows Vista was release without most of them. The security features are expected to available in the next years. However, Vista still includes the “BitLocker” which makes use of TPM to provide secure boot and hard disk encryption. In the same context, Microsoft’s “Singularity Project” is an ongoing attempt at providing isolated processes for security and reliability [142].
| |
   |
|
| 13 / 38 |
