Trusted Firmware Services Based on TPM Zhenlong Du',Xiaoli Li',and Kangkang Shen23 College of Electronics and Information Engineering of Nanjing University of Technology 2 High Tech Research Institute of Nanjing University of Technology 3 Nanjing Byosoft Co.Ltd,Nanjing 4 State Key Laboratory of Novel Software Technology,Nanjing University (Duzhlcad,lixlorchid}@gmail.com,kshen@byosoft.com.cn Abstract.How to build trusted firmware platform has been a research hot in computer security community.In this paper,a novel entrusted firmware ser- vices under UEFI framework are proposed,which exploits the high safety of Trusted Platform Module (TPM)root and uneditability of firmware for building the trusted platform in code modification checking,user identity authenticating, hard disk attestation and real time security alert.The experiment showed that the presented schemas are feasible,and could efficiently construct a trusted firmware platform. Keywords:firmware,TPM,UEFI. 1 Introduction Nowadays,such security problem as the virus incidence,insider abuse,internet fraud, etc [1,7]are increased,for people to utilize a secure computer is desired.To build the secure computer is a comprehensive project,and it involves firmware,hardware, operating system,authentication,communication,and so on.Untill now,some tools as virus detection,digital signature,intrusion detection have been developed,but few methods on firmware are proposed.In this paper,how to construct the trusted firm- ware platform under UEFI framework is discussed. The Trusted Computing Group (TCG)[2]proposed hardware-rooted TPM approach for PC security.TPM is a hardware-based security and cryptography chip and it has been widely adopted and installed on more than 100 million PC.TPM can augment PC with a secure hardware repository for safeguarding digital certificates, passwords and digital keys etc.TPM keeps the incidence of trusted computing on client and sends the information to a verifier which evaluates the validness of hard- ware and software [13]. Hardware is directly driven by firmware,which is prevailingly developed by UEFI (Unified Extensible Firmware Interface)[3,4].UEFI is an interface specification between hardware platform and OS (Operating System),it is independent of both hardware and OS.UEFI framework is comprised of such modules as driver,protocol and application.UEFI specification is contributed by many hardware vendors,OS developer and IBVs,it has become the actually industrial firmware standard.BIOS L.Chen and M.Yung (Eds.):INTRUST 2009,LNCS 6163,pp.227-235,2010. Springer-Verlag Berlin Heidelberg 2010L. Chen and M. Yung (Eds.): INTRUST 2009, LNCS 6163, pp. 227–235, 2010. © Springer-Verlag Berlin Heidelberg 2010 Trusted Firmware Services Based on TPM Zhenlong Du1,4, Xiaoli Li1 , and Kangkang Shen2,3 1 College of Electronics and Information Engineering of Nanjing University of Technology 2 High Tech Research Institute of Nanjing University of Technology 3 Nanjing Byosoft Co. Ltd, Nanjing 4 State Key Laboratory of Novel Software Technology, Nanjing University {Duzhlcad,lixlorchid}@gmail.com, kshen@byosoft.com.cn Abstract. How to build trusted firmware platform has been a research hot in computer security community. In this paper, a novel entrusted firmware ser￾vices under UEFI framework are proposed, which exploits the high safety of Trusted Platform Module (TPM) root and uneditability of firmware for building the trusted platform in code modification checking, user identity authenticating, hard disk attestation and real time security alert. The experiment showed that the presented schemas are feasible, and could efficiently construct a trusted firmware platform. Keywords: firmware, TPM, UEFI. 1 Introduction Nowadays, such security problem as the virus incidence, insider abuse, internet fraud, etc [1, 7] are increased, for people to utilize a secure computer is desired. To build the secure computer is a comprehensive project, and it involves firmware, hardware, operating system, authentication, communication, and so on. Untill now, some tools as virus detection, digital signature, intrusion detection have been developed, but few methods on firmware are proposed. In this paper, how to construct the trusted firm￾ware platform under UEFI framework is discussed. The Trusted Computing Group (TCG) [2] proposed hardware-rooted TPM approach for PC security. TPM is a hardware-based security and cryptography chip and it has been widely adopted and installed on more than 100 million PC. TPM can augment PC with a secure hardware repository for safeguarding digital certificates, passwords and digital keys etc. TPM keeps the incidence of trusted computing on client and sends the information to a verifier which evaluates the validness of hard￾ware and software [13]. Hardware is directly driven by firmware, which is prevailingly developed by UEFI (Unified Extensible Firmware Interface) [3, 4]. UEFI is an interface specification between hardware platform and OS (Operating System), it is independent of both hardware and OS. UEFI framework is comprised of such modules as driver, protocol and application. UEFI specification is contributed by many hardware vendors, OS developer and IBVs, it has become the actually industrial firmware standard. BIOS