hkr.sePublications
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Hardware Root of Trust for Linux Based Edge Gateway
Kristianstad University, Faculty of Natural Science.
Kristianstad University, Faculty of Natural Science.
2018 (English)Independent thesis Advanced level (degree of Master (One Year)), 10 credits / 15 HE creditsStudent thesis
Abstract [en]

Linux-based Edge Gateways that connects hundreds or maybe thousands of IoT devices, are exposed to various threats and cyber-attacks from the internet. These attacks form a considerable risk targeting the privacy and confidentiality of IoT devices throughout their gateways. Many researches and studies have been conducted to alleviate such a problem. One of the solutions can be achieved by building a root of trust based on a hardware module such as Trusted Platform Module (TPM) or software like Trusted Execution Environment (TEE). In this work, we provide a solution to the problem by enabling Hardware Root of Trust (HRoT) using TPM on a product from HMS Industrial Network AB known as GWen board, a Linux-based embedded system, used as gateway to connect IoT devices. We describe a method that uses the processor of the GWen (i.e. Zynq-7020 FPGA SoC) to enable secure boot. Besides, we provide a method to enable the TPM chip mounted on the GWen (i.e. SLB 9670 TPM 2.0) using TPM Software Stack TSS 2.0. We demonstrated, in detail, various use-cases using the TPM on GWen including cryptographic keys generation, secure key storage and key usage for different cryptographic operations. Furthermore, we conducted an analysis to the adopted solution by inspecting the latency of TPM commands on the GWen gateway. According to the high restrictions of TPM 2.0 specifications and based on our results, adding the TPM 2.0 to the IoT gateway GWen will enhance the security of its Linux distribution and will makes it possible to securely identify and authenticate the gateway on the network based on its secret keys that are stored securely inside its TPM.

Place, publisher, year, edition, pages
2018. , p. 70
Keywords [en]
HRoT, TPM 2.0, Zynq, TSS, RSA, Secure Boot, TPM Simulator
National Category
Computer Systems
Identifiers
URN: urn:nbn:se:hkr:diva-18846OAI: oai:DiVA.org:hkr-18846DiVA, id: diva2:1265580
Educational program
Master Programme with specialization in Embedded Systems
Presentation
2018-10-25, 17-322, Kristianstad, 11:15 (English)
Supervisors
Examiners
Available from: 2018-11-27 Created: 2018-11-25 Last updated: 2018-11-27Bibliographically approved

Open Access in DiVA

fulltext(1317 kB)433 downloads
File information
File name FULLTEXT01.pdfFile size 1317 kBChecksum SHA-512
1242daa899d1386157097c1cf9dccbbdfbcbf2f2dbae7ee3a0e4f6065c22e6d96731856e79d4743be8453f6fbf8f29998bf5cf7e60040b4ede2acdb67736cf4d
Type fulltextMimetype application/pdf

By organisation
Faculty of Natural Science
Computer Systems

Search outside of DiVA

GoogleGoogle Scholar
Total: 433 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Altmetric score

urn-nbn
Total: 584 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf