원문정보
초록
영어
The TNC IF-T Protocol Binding for Tunneled EAP Methods (TIPBTEM) is specified by Trusted Computing Group (TCG) for TNC assessment (i.e., Platform-Authentication) exchanges. Because the TIPBTEM includes Platform-Authentication in addition to the usual user authentication, it differs greatly from the traditional security protocols in terms of security requirements. To analyze the security of the TIPBTEM correctly, the extended strand space model (SSM) for trusted network access protocols is applied in this paper. And it is pointed out that the TIPBTEM cannot prevent man-in-the-middle (MITM) attacks in some cases. To eliminate MITM attacks, the unsecure cases of the TIPBTEM are improved based on cryptographic binding. And then it is showed that these improved TIPBTEM cases can resist MITM attacks in the extended SSM.
목차
1. Introduction
2. Overview of the TIPBTEM
3. Security Analysis of the TIPBTEM
3.1. Security Analysis of Case a) of the TIPBTEM
3.2. Security Analysis of Case b) of the TIPBTEM
3.3. Security Analysis of Case c) of the TIPBTEM
3.4. Security Analysis of Case d) of the TIPBTEM
3.5. Security Analysis of Case e) of the TIPBTEM
4. Improvement of the TIPBTEM
5. Conclusions
References