Outbound Authentication for Programmable Secure Coprocessors

Authors

S W. Smith, Dartmouth College

Document Type

Technical Report

Publication Date

3-1-2001

Technical Report Number

TR2001-401

Abstract

A programmable secure coprocessor platform can help solve many security problems in distributed computing. These solutions usually require that coprocessor applications be able to participate as full-fledged parties in distributed cryptographic protocols. Thus, to fully enable these solutions, a generic platform must not only provide programmability, maintenance, and configuration in the hostile field---it must also provide outbound authentication for the entities that result. A particular application on a particular untampered device must be able to prove who it is to a party on the other side of the Internet. To be effective, a secure outbound authentication service must closely mesh with the overall security architecture. Our initial architecture only sketched a rough design for this service, and did not complete it. This paper presents our research and development experience in refining and implementing this design, to provide PKI-based outbound authentication for the IBM 4758 Model 2 secure coprocessor platform.

Dartmouth Digital Commons Citation

Smith, S W., "Outbound Authentication for Programmable Secure Coprocessors" (2001). Computer Science Technical Report TR2001-401. https://digitalcommons.dartmouth.edu/cs_tr/184