Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Use of Secure Device Identifiers inVirtualised Industrial Applications
KTH, School of Electrical Engineering (EES), Communication Networks.
2016 (English)Independent thesis Advanced level (degree of Master (Two Years)), 20 credits / 30 HE creditsStudent thesis
Abstract [en]

Industrial Control Systems (ICS) running in a virtualised environment are be-coming a common practice, however, there is not any standard or specification detailing authentication methods for industrial environments.Considering the current standards and specifications designed to provide au-thentication, we present the design and implementation of several approaches that enable trusted computing in virtualised environments. Most of the ap-proaches are based on a hardware-based root of trust, assuring the user’s soft-ware is always running on the same workstation.After comparing the approaches, we test an efficient approach by using the SecDevID stored in the virtual TPM to establish TLS sessions. Given the TLS features, this approach provides both hardware and VM authentication as well as confidentiality. Finally, the performance of the tested approach is evaluated.

Abstract [sv]

Industriella styrsystem (ICS) som körs i en virtualiserad miljöo blir allt vanligare, men det finns hittils ingen standard eller specifikatjon för autentiseringsmetoder i industriella miljöer. Baserad på de gällande normer och specifikationer för att genomföra autentisering, vi presenterar design och implementation av flera metoder som möjliggör trusted computing i virtualiserade miljöer. De flesta av de metoder är baserade på en hårdvarubaserad ankare av förtroende, som garanterar att användarens mjukvara alltid körs på samma hårdvara. Vi jämför olika metoder, och testar en effektiv metod som avnänder SecDevID lagrad i en virtuell TPM för att etablera TLS förbindelser. Tillsammans med TLS ger lösningen autentisering för både hårdvara och VM, samt konfidentiletät. Vi utvärderar prestandan av den sistnämda metoden genom ett expertiment.

Place, publisher, year, edition, pages
2016.
Series
EES Examensarbete / Master Thesis, TRITA-EE 2016:143
National Category
Other Electrical Engineering, Electronic Engineering, Information Engineering
Identifiers
URN: urn:nbn:se:kth:diva-191513OAI: oai:DiVA.org:kth-191513DiVA: diva2:957091
Presentation
2016-08-26, 16:00 (English)
Examiners
Available from: 2016-10-07 Created: 2016-09-01 Last updated: 2016-10-07Bibliographically approved

Open Access in DiVA

fulltext(985 kB)40 downloads
File information
File name FULLTEXT02.pdfFile size 985 kBChecksum SHA-512
e78dee551a7a08f96cc7e2dca51bf059b01a3eaa3667f0aa9e72f794892a3675a4fa6a94483a24c1e645f6ba1e823b17c0b9e4f5446b6fd9a494461d1fb77bf8
Type fulltextMimetype application/pdf

By organisation
Communication Networks
Other Electrical Engineering, Electronic Engineering, Information Engineering

Search outside of DiVA

GoogleGoogle Scholar
Total: 40 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Altmetric score

urn-nbn
Total: 87 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf