Microsoft Palladium

Seminar Report on

MICROSOFT PALLADIUM Submitted by

AJITH V

in partial fulfillment for the award of the degree of

BACHELOR OF TECHNOLOGY IN COMPUTER SCIENCE AND ENGINEERING

SCHOOL OF ENGINEERING COCHIN UNIVERSITY OF SCIENCE AND TECHNOLOGY, KOCHI - 682022

OCTOBER 2008

DIVISION OF COMPUTER ENGINEERING SCHOOL OF ENGINEERING

COCHIN UNIVERSITY OF SCIENCE AND TECHNOLOGY KOCHI - 682022

Certificate Certified that this is a bonafide record of the seminar work entitled “Microsoft Palladium” done by the following students

Ajith V of the VIIth semester, Computer Science and Engineering in the year 2008 in partial fulfillment of the requirements to the award of Degree of Bachelor of Technology in Computer Science and Engineering of Cochin University of Science and Technology.

Ms Shekha Chenthara

Dr. David Peters S

Seminar Guide

Head of the Department

Lecture

Division of computer science

Division of computer science

SOE, CUSAT

SOE, CUSAT

ACKNOWLEDGEMENT

First and foremost I thank almighty for his blessings. I sincerely express my gratitude to my seminar guide, Ms.shekha chenthara, Lecturer, CUSAT, for his proper guidance and valuable suggestions. I am equally indebted to Mr. David Peter, the HOD, Computer Science division and other faculty members for giving me such an opportunity to learn and present this seminar. If not for the above mentioned people my seminar would never have been completed successfully. I once again extend my sincere thanks to all of them

AJITH V

ABSTRACT

The Next-Generation Secure Computing Base (NGSCB), formerly known as Palladium, is a software architecture designed by Microsoft which is expected to implement "Trusted Computing" concept on future versions of the Microsoft Windows operating system. Palladium is part of Microsoft's Trustworthy Computing initiative. Microsoft's stated aim for palladium is to increase the security and privacy of computer users. Palladium involves a new breed of hardware and applications in along with the architecture of the Windows operating system. Designed to work side-by-side with the existing functionality of Windows, this significant evolution of the personal computer platform will introduce a level of security that meets the rising customer requirements for data protection, integrity and distributed collaboration. It's designed to give people greater security, personal privacy and system integrity.

TABLE OF CONTENTS ABSTRACT LIST OF FIGURES

1.

INTRODUCTION

1.1 CORE PRINCIPLES OF PALLADIUM

2.

CORE PRINCIPLES OF PALLADIUM 2.1. HARDWARE COMPONENTS

ii

1

4

11 11

2.1.1. TRUSTED SPACE

11

2.1.2. SEALED STORAGE

11

2.1.3. ATTESTATION

11

2.2. SOFTWARE COMPONENTS

12

2.2.1. NEXUS

12

2.2.2. TRUSTED AGENT

12

3.

COMPARISON OF TCPA AND PALLADIUM

20

4.

ADVANTAGES OF PALLADIUM

21

4.1. BLOCK MALICIOUS CODE

21

4.2. DIGITAL RIGHT MANAGEMENT

21

DISADVANTAGES OF PALLADIUM

23

5.1. UPGRADES

23

5.2. INTEROPERABILITY

23

5.3. LEGACY PROGRAMS

24

6.

CONCLUSION

25

7.

REFERENCES

27

5.

i

LIST OF FIGURES

SL No

Title

Pg No

Fig 1.1

PALLADIUM ENABLED SYSTEM

2

Fig 2.1

PALLADIUM WITH CLOSED SPHERE OF TRUST

7

Fig 2.2

PALLADIUM AS AN OPT_IN SYSTEM

8

ii

Microsoft Palladium

1. INTRODUCTION The Next-Generation Secure Computing Base (NGSCB), formerly known as Palladium, is a software architecture designed by Microsoft which is expected to implement "Trusted Computing" concept on future versions of the Microsoft Windows operating system. Palladium is part of Microsoft's Trustworthy Computing initiative. Microsoft's stated aim for palladium is to increase the security and privacy of computer users. Palladium involves a new breed of hardware and applications in along with the architecture of the Windows operating system. Designed to work side-by-side with the existing functionality of Windows, this significant evolution of the personal computer platform will introduce a level of security that meets the rising customer requirements for data protection, integrity and distributed collaboration. It's designed to give people greater security, personal privacy and system integrity. Internet security is also provided by palladium such as protecting data from virus and hacking of data In addition to new core components in Windows that will move the Palladium effort forward, Microsoft is working with hardware partners to build Palladium components and features into their products. The new hardware architecture involves some changes to CPUs which are significant from a functional perspective. There will also be a new piece of hardware called for by Palladium that you might refer to as a security chip. It will provide a set of cryptographic functions and keys that are central to what we're doing. There are also some associated changes under the chipset, and the graphics and I/O system through the USB port--all designed to create a comprehensive security environment.

"Palladium" is the code name for an evolutionary set of features for the Microsoft Windows operating system. When combined with a new breed of hardware and applications, "Palladium" gives individuals and groups of users greater data security, personal privacy and system integrity. Designed to work side-by-side with the existing functionality of Windows, this significant evolution of the personal computer platform will introduce a level of security that meets the rising customer requirements for data protection, integrity and distributed collaboration .

Division of Computer Science, SOE, CUSAT

1

Microsoft Palladium

Users implicitly trust their computers with more of their valuable data every day. They also trust their computers to perform more and more important financial, legal and other transactions. "Palladium" provides a solid basis for this trust: a foundation on which privacy- and security-sensitive software can be built.

There are many reasons why "Palladium" will be of advantage to users. Among these are enhanced, practical user control; the emergence of new server/service models; and potentially new peer-to-peer or fully peer-distributed service models. The fundamental benefits of "Palladium" fall into three chief categories: greater system integrity, superior personal privacy and enhanced data security.These categories are illustrated in Fig 1.1

Fig 1.1 Palladium enabled system

Division of Computer Science, SOE, CUSAT

2

Microsoft Palladium

Today's personal computing environment has advanced in terms of security and privacy, while maintaining a significant amount of backward compatibility. However, the evolution of a shared, open network (the Internet) has created new problems and requirements for trustworthy computing. As the personal computer grows more central to our lives at home, work and school, consumers and business customers alike are increasingly aware of privacy and security issues.

Now, the pressure is on for industry leaders to take the following actions: •

Bui l ds ol ut i onst h a twi l lme e tt h epr e s s i ngn e e df orr e l i a bi l i t ya n di n t e gr i t y .

•

Ma kei mpr ov e me n t st ot h epe r s on a lc omput e rs uc ht h a ti tc a nmor ef ul l yr e a c hi t s pot e n t i a la n de n a bl eawi de rr a n geofoppor t uni t i e s .

•

Gi v ec us t ome r sa n dc on t e n tpr ovi de r san e wl e v e lofc onf i de n c ei nt h ec omput e r e x pe r i e n c e .

•

Con t i n ue t os upp or tb a c kwa r dc ompa t i bi l i t y wi t he xi s t i n gs of t wa r ea n d us e r kn owl e dget h a te xi s t swi t hWi ndowss y s t e mst oda y .

Toge t h e r ,i n dus t r yl e a de r smus ta ddr e s st h e s ec r i t i c a li s s ue st ome e tt h emoun t i n gde ma n df or t r us t e dc omput i n g whi l e pr e s e r vi ng t h e ope na n dr i c hc h a r a c t e r of c ur r e n tc omput e r f un c t i on a l i t y .

Division of Computer Science, SOE, CUSAT

3

Mi c r os of tPa l l a di um

1. 1FEATURESOFPALLADI UM De v e l opme n tof" Pa l l a di um"i sgui de d by i mpor t a n tb us i ne s sa n d Te c hni c a l i mpe r a t i v e sa n da s s umpt i ons .Amon gt h e s ea r et h ef ol l owi ng: à A "Palladium"-enhanced computer must continue to run any existing applications and device drivers.

" Pa l l a di um"i sn otas e pa r a t eope r a t i n gs y s t e m.I ti sb a s e dona r c hi t e c t ur a l e nh a nc e me n t st ot h eWi ndowske r n e la n dt oc omput e rh a r dwa r e ,i nc l udi ngt h eCPU,pe r i phe r a l s a n dc hi ps e t s ,t oc r e a t ean e wt r us t e de x e c ut i ons ubs y s t e m( s e eFi g1) .

" Pa l l a di um"wi l ln ote l i mi na t ea nyf e a t ur e sofWi ndowst h a tus e r sh a v ec ome t or e l yon;e v e r y t hi n gt h a tr un st oda ywi l lc on t i n uet or unwi t h" Pa l l a di um. "I na ddi t i on , " Pa l l a di um"doe sn otc h a n gewha tc a nb epr ogr a mme dorr unont h ec omput i n gpl a t f or m;i t s i mpl yc h a n ge swh a tc a nb eb e l i e ve da b outpr ogr a ms ,a n dt h edur a bi l i t yoft h os eb e l i e f s . Mor e ov e r ," Pa l l a di um"wi l lope r a t ewi t ha nypr og r a mt h eus e rs pe c i f i e swhi l ema i n t a i ni ng s e c ur i t y .

à "Palladium"-based systems must provide the means to protect user privacy better than any operating system does today.

" Pa l l a di um"pr e v e n t si de n t i t yt h e f ta n dun a ut h or i z e da c c e s st o pe r s on a lda t aont h eus e r ' sde vi c ewhi l eont h eI n t e r n e ta n donot h e rn e t wor ks .Tr a n s a c t i onsa nd pr oc e s s e sa r ev e r i f i a bl ea n dr e l i a bl e( t h r ought h ea t t e s t a bl eh a r dwa r ea n ds of t wa r ea r c hi t e c t ur e de s c r i be db e l ow) ,a n dt h e yc a nn otb ei mi t a t e d.

Wi t h" Pa l l a di um, "as y s t e m' ss e c r e t sa r el oc ke di nt h ec omput e ra n da r eonl y r e v e a l e dont e r mst h a tt h eus e rh a ss pe c i f i e d.I na ddi t i on ,

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

4

Mi c r os of tPa l l a di um

t h et r us t e d us e ri n t e r f a c epr e v e n t ss n oopi n ga nd i mpe r s on a t i on .Th eus e rc on t r ol swha ti s r e v e a l e da n dc a ns e pa r a t ec a t e g or i e sofda t aonas i n gl ec omput e ri n t odi s t i n c tr e a l ms .

Fi na l l y ,t h e" Pa l l a di um"a r c hi t e c t ur ewi l le n a bl ean e wc l a s sofi de n t i t y s e r vi c epr ovi de r st h a tc a npot e n t i a l l yof f e rus e r sc h oi c e sf orh owt h e i ri de n t i t i e sa r er e pr e s e n t e d i nonl i net r a n s a c t i ons .Th e s es e r vi c epr ovi de r sc a na l s oe n s ur et h a tt h eus e ri si nc on t r olof pol i c i e sf orh ow pe r s on a li nf or ma t i oni sr e v e a l e dt oot h e r s .I na ddi t i on ," Pa l l a di um"wi l la l l ow us e r st oe mpl oyi de n t i t ys e r vi c epr ovi de r soft h e i rownc h oos i n g. à "Palladium" will not require digital rights management technology, and DRM will not require "Palladium."

Di gi t a lr i gh t sma n a ge me n t( DRM)i sa ni mpor t a n t ,e me r gi ngt e c hn ol ogyt h a t ma nybe l i e vewi l lb ec e n t r a lt ot h edi gi t a le c on omyoft h ef ut ur e .Asame a nsofde f i ni ngr ul e s a n ds e t t i n gpol i c i e st h a te nh a n c et h ei n t e gr i t ya n dt r us tofdi gi t a lc on t e n tc on s umpt i on ,DRM i s vi t a lf orawi der a n geofc on t e n t pr ot e c t i onus e s .Somee x a mpl e sofDRM a r et h epr ot e c t i onof v a l ua bl ei n t e l l e c t ua lpr ope r t y ,t r us t e de ma i la n dpe r s i s t e n tpr ot e c t i onofc or p or a t ed oc ume n t s .

Whi l eDRM a n d" Pa l l a di um"a r eb ot hs uppor t i v eofTr us t wor t hyComput i n g, n e i t h e ri sa bs ol ut e l yr e qui r e df ort h eot h e rt owor k.DRM c a nb ede pl oy e donn on " Pa l l a di um" ma c hi ne s ,a n d" Pa l l a di um"c a npr ovi deus e r swi t hbe n e f i t si n de pe n de n tofDRM.Th e ya r e s e pa r a t et e c hn ol ogi e s .Th a ts a i d,t h ec ur r e n ts of t wa r e b a s e dDRM t e c hn ol ogi e sc a nber e n de r e d s t r on ge rwh e nde pl oy e don" Pa l l a di um" b a s e dc omput e r s . à User information is not a requirement for "Palladium" to work.

" Pa l l a di um"a ut h e n t i c a t e ss of t wa r ea n d ha r dwa r e ,n otus e r s ." Pa l l a di um"i s a b outpl a t f or mi n t e gr i t y ,a n de na bl e sus e r s-whe t h e ri nac or p or a t eorh omes e t t i n g-t ot a ke a dv a n t a geofs y s t e mt r us t wor t hi n e s st oe s t a bl i s hmul t i pl e ,s e pa r a t ei de n t i t i e s ,e a c ht os ui ts pe c i f i c n e e ds .

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

5

Mi c r os of tPa l l a di um

Fore x a mpl e ,a ne mpl oy e el ogson t ot h ec or p or a t en e t wor kf r omh ome .At r us t e dga t e wa ys e r v e r a tt h ec or p or a t en e t wor k me di a t e st h er e mot ea c c e s sc onn e c t i on ,a l l owi ng onl yt r us t e d a ppl i c a t i onst oa c c e s st hen e t wor k .Thi se ns ur e st h a tt h en e t wor ki spr ot e c t e da ga i n s ti nf e c t i on f r om a t t a c ksbyvi r us e st h a tt h eh omeus e rmi gh th a ver e c e i ve dt h r oughpe r s on a le ma i l .On c e c on n e c t e d,t h ee mpl oy e ec a nus eRe mot eDe s kt opt oa c c e s st h ec omput e ra tt h eof f i c eors a vea f i l eba c kt ot h ec or p or a t e s e r v e rbyus i n gl oc a l l ya c t i v eTr us t e dAge n t sa n ds e a l e ds t or a ge( s e e b e l ow)ont h ec l i e n t . Wi t ht hi st e c hn ol ogy ,t h ec or p or a t en e t wor ki spr ot e c t e d,whi l et h ei ndi vi dua l c a na l s ob ec onf i de n tt h a tt h ec ompa nyi sn otus i n gt h er e mot ec onn e c t i ona sa noppor t un i t yt o s n oopi n t ot h ec on t e n t soft h eus e r ' sh omec omput e r . à"Palladium" will enable closed spheres of trust.

Ac l os e ds ph e r eoft r us tb i n dsda t aoras e r vi c et ob ot has e tofus e r s( l ogon )a n d t oas e tofa c c e pt a bl ea ppl i c a t i on s .Ass h owni nFi g2. 2,t h en e x us( f or me r l yr e f e r r e dt oa st h e Tr us t e dOpe r a t i n gRoot ,orTOR)d oe sn ots i mpl yope nt h ev a ul t ;t h ene x uswi l lope nonl ya pa r t i c ul a rv a ul t ,a n donl yf oras ma l ll i s tofa ppl i c a t i on s .

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

6

Mi c r os of tPa l l a di um

Pa l l a di umwi t hc l os e ds ph e r e soft r us t Fi g2. 1 à"Palladium" is an opt-in system.

" Pa l l a di um" i se n t i r e l ya n opt i ns ol ut i on;s y s t e ms wi l ls hi p wi t ht h e " Pa l l a di um"h a r dwa r ea n ds of t wa r ef e a t ur e st ur n e dof f .Th eus e roft h es y s t e mc a nc h oos et o s i mpl ys t a ywi t ht hi sde f a ul ts e t t i n g,l e a vi nga l l" Pa l l a di um" r e l a t e dc a pa bi l i t i e s( h a r dwa r ea nd s of t wa r e )di s a bl e d.

Pa l l a di um mus tb ehi ghl yr e s i s t a n tt os of t wa r ea t t a c ks( s uc ha sTr oj a nh or s e vi r us e s ) ,a n dmus tpr ovi deus e r swi t ht h ei n t e gr i t yofapr ot e c t e d ,e n dt oe n ds y s t e ma c r os s n e t wor ks .

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

7

Mi c r os of tPa l l a di um

Pa l l a di uma sa nopt i ns y s t e m Fi g2. 2

Pa l l a di um pr ovi de sat r us t e dpr oc e s s i n ge nvi r onme n t .Tr us t e dc oder un si n me mor yt h a ti sphy s i c a l l yi s ol a t e d,pr ot e c t e d,a n di n a c c e s s i bl et ot h er e s toft h es y s t e m,ma ki ng i ti nh e r e n t l yi mpe r vi oust ovi r us e s ,s py wa r e ,orot h e rs of t wa r ea t t a c ks .Wi t hr e s pe c tt ovi r us e s , t h ec on t r i b ut i onf r omPa l l a di um i sf a i r l ys t r a i gh t f or wa r d.Si n c ePa l l a di umdoe sn oti n t e r f e r ewi t h t h e ope r a t i on ofa ny pr ogr a mr unni ng i nt h er e gul a rWi ndowse nvi r onme n t ,e v e r y t hi ng, i nc l udi ngt h en a t i v eOSa n dvi r us e s ,r un st h e r ea si tdoe st oda y .Soa n t i vi r usmoni t or i n ga nd de t e c t i ons of t wa r ei nWi ndowswi l ls t i l lb en e e de d.Howe v e r ,Pa l l a di um doe spr ovi dea n t i vi r us

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

8

Mi c r os of tPa l l a di um

s of t wa r ewi t has e c ur ee x e c ut i one nvi r onme n tt h a tc a n n otb ec or r up t e dbyi nf e c t e dc ode ,s oa n a n t i vi r uspr ogr a mb ui l tont opofaPa l l a di um a ppl i c a t i onc oul dgua r a n t e et h a ti th a s n' tb e e n c or r up t e d.Thi sgr oun di ngoft h ea n t i vi r uss of t wa r ea l l owsi tt ob oot s t r a pi t s e l fi n t oagua r a n t e e d e x e c ut i ons t a t e ,s ome t hi ngi tc a n' td ot oda y .

On eoft h eke yPa l l a di um b ui l di ngbl oc ksi s" a ut h e n t i c a t e dope r a t i on " .I fa b a n ki nga ppl i c a t i oni st ob et r us t e dt ope r f or ma na c t i on ,i ti si mpor t a n tt h a tt h eb a n ki ng a ppl i c a t i onh a sn otb e e ns ubv e r t e d.I ti sa l s oi mpor t a n tt h a tb a n ki ngda t ac a nonl yb ea c c e s s e d bya ppl i c a t i onst h a tha v eb e e ni de n t i f i e da st r us t e dt or e a dt h a tda t a ." Pa l l a di um"s y s t e ms pr ovi det hi sc a pa bi l i t yt h r oughame c h a ni s mc a l l e ds e a l e ds t or a ge .

An ot h e rc a pa bi l i t y pr ovi de d by a ut h e n t i c a t e d ope r a t i on i sa t t e s t a t i on . " Pa l l a di um"wi l la l l owab a n kt oa c c e pton l yt r a n s a c t i onsi ni t i a t e dbyt h eus e ra n dt h a ta r en ot vi r us e sorot h e run kn own ma c hi ne son t h eI nt e r n e t .Be c a us e" Pa l l a di um"s of t wa r ea nd h a r dwa r ei sc r y pt ogr a phi c a l l yve r i f i a bl et ot h eu s e ra n dt oot h e rc omput e r s ,pr ogr a msa nd s e r vi c e s ,t h es y s t e mc a nv e r i f yt h a tot h e rc omput e r sa n dpr oc e s s e sa r et r us t wor t hyb e f or e e n ga gi ngt h e mors h a r i ngi nf or ma t i on .Us e r st h e r e f or ec a nb ec onf i de n tt h a tt h e i ri n t e n t i onsa r e pr ope r l yr e pr e s e n t e da n dc a r r i e dout ,a si l l us t r a t e di nFi gur e3.Mor e ov e r ,t h es our c ec odef or t h eope r a t i n gs y s t e m' sc r i t i c a ln e x uswi l lbepubl i s h e da n dva l i da t e dbyt hi r dpa r t i e s .

Fi na l l y ,i n t e r a c t i onwi t ht h ec omput e ri t s e l fi st r us t e d ." Pa l l a di um" s pe c i f i c h a r dwa r epr ovi de sapr ot e c t e dpa t h wa yf r om ke yb oa r dt omoni t or ,a n dke y s t r oke sc a nn otb e s n oope dors poof e d,e v e nbyma l i c i ousde vi c edr i ve r s . à "Palladium" data security features will make a Windows-based device a trustworthy environment for any data.

Th e" Pa l l a di um"s y s t e mi sa r c hi t e c t e dwi t hs e c ur i t ya n di n t e gr i t ya si t spr i ma r y de s i gngoa l s .Tr us t e dc odec a nn otb eob s e r v e dormodi f i e dwh e nr unni ngi nt h et r us t e de x e c ut i on s pa c e .Fi l e sa r ee n c r y pt e dwi t hma c hi ne s pe c i f i cs e c r e t s ,ma ki ngt h e m us e l e s si fs t ol e nor

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

9

Mi c r os of tPa l l a di um

s ur r e pt i t i ous l yc opi e d.I na ddi t i on , ma c hi ne s pe c i f i cs y s t e m s e c r e t sa r e phy s i c a l l ya n d c r y pt og r a phi c a l l yl oc ke d( t h e ma c hi ne ' spr i v a t e ke yi se mbe dde di nh a r dwa r ea n d ne v e r e x pos e d) ,a n dt h et r us t e dh a r dwa r ea r c hi t e c t ur e pr e v e n t ss n oopi n g,s poof i ng a n d da t a i n t e r c e pt i on .Cor es y s t e ms e c r e t sa r es t or e di nha r dwa r e ,wh e r en os of t wa r ea t t a c kc a nr e v e a l t h e m.Ev e ni fe x pos e dbyas ophi s t i c a t e dh a r dwa r ea t t a c k,t h ec or es y s t e ms e c r e t sa r eon l y a ppl i c a bl et oda t aont h ec ompr omi s e ds y s t e ma n dc a nn otb eus e dt ode v e l opwi de l yde pl oy a bl e h a c ks .Fi na l l y ,ac ompr omi s e ds y s t e mc a nl i ke l yb es pot t e dbyI Tma na ge r s ,s e r vi c epr ovi de r s a n dot h e rs y s t e ms ,a n dt h e ne x c l ude d.

àA "Palladium" system will be open at all levels.

" Pa l l a di um"h a r dwa r ewi l lr una nyn e x us .Somepl a t f or msma ya l l ow aus e rt o r e s t r i c tt h en e x us e st h a ta r ea l l owe dt or un ,b utt h eus e rwi l ls t i l lb ei nf ul lc on t r oloft hi spol i c y . Th e" Pa l l a di um"TOR wi l la l s or unt r us t e da ge n t sf r om a nypubl i s he r .Aga i n,t h eus e rma y c h oos et or e s t r i c tt h et r us t e da ge n t st h a tr unont h es y s t e m,b utt h eus e rwi l lr e ma i ni nf ul lc on t r ol oft hi spol i c y .Th e" Pa l l a di um"n e x uswi l lwor kwi t ha nyne t wor ks e r vi c epr ovi de roft h eus e r ' s c h oos i n g.

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

10

Mi c r os of tPa l l a di um

2. CORE PRINCIPLES OF PALLADIUM " Pa l l a di um"c ompr i s e st woke yc ompon e n t s :h a r dwa r ea n ds of t wa r e .

2. 1HARDWARECOMPONENTS En gi ne e r e df ore ns ur i n gt h epr ot e c t e de x e c ut i onofa ppl i c a t i on sa n dpr oc e s s e s , t h epr ot e c t e dope r a t i n ge nvi r onme n tpr ovi de st h ef ol l owi ngb a s i cme c h a ni s ms :

2. 1. 1 TRUSTED SPACE:- Th ee x e c ut i ons pa c ei spr ot e c t e df r om e x t e r n a ls of t wa r ea t t a c ks s uc ha savi r us .Tr us t e ds pa c ei ss e tupa n dma i nt a i n e dbyt h ene x usa n dh a sa c c e s st o v a r i ouss e r vi c e spr ovi de dby" Pa l l a di um, "s uc ha ss e a l e ds t or a ge .

2. 1. 2 SEALED STORAGE :- Se a l e ds t or a gei sa na ut h e n t i c a t e dme c ha ni s mt h a ta l l owsa pr og r a mt os t or es e c r e t st h a tc a n n otb er e t r i e v e dbyn on t r us t e dpr ogr a mss uc ha savi r us orTr oj a nh or s e .I nf or ma t i on i ns e a l e ds t or a gec a nn otb er e a d byot h e rn on t r us t e d pr og r a ms .( Se a l e ds t or a gec a nn otb er e a dbyun a ut h or i z e ds e c ur epr ogr a ms ,f ort h a t ma t t e r ,a n dc a nn otb er e a de v e ni fa n ot h e rope r a t i n gs y s t e mi sb oot e dort h edi s ki s c a r r i e dt oa n ot h e rma c hi ne . )Th e s es t or e ds e c r e t sc a nb et i e dt ot h ema c hi ne ,t h en e x usor t h ea ppl i c a t i on .Mi c r os of twi l la l s opr ovi deme c h a ni s msf ort h es a f ea n dc on t r ol l e d b a c kupa n dmi gr a t i onofs e c r e t st oot h e rma c hi ne s .

2. 1. 3 ATTESTATI ON :- At t e s t a t i oni same c ha ni s mt h a ta l l owst h eus e rt or e v e a ls e l e c t e d c h a r a c t e r i s t i c s oft h e ope r a t i n ge nvi r onme n tt oe x t e r n a lr e que s t or s .Fore x a mpl e , a t t e s t a t i on c a n beus e dt ov e r i f yt h a tt h ec omput e ri sr unni ng a v a l i dv e r s i on of " Pa l l a di um. "

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

11

Mi c r os of tPa l l a di um

2. 2SOFTWARECOMPONENTS Th epl a t f or mi mpl e me n t st h e s et r us t e dpr i mi t i ve si na nope n ,pr ogr a mma bl e wa yt ot hi r dpa r t i e s .Th epl a t f or mc on s i s t soft h ef ol l owi nge l e me n t s :

2. 2. 1 NEXUS:- ( at e c h n ol ogyf or me r l yr e f e r r e dt oa st h e" Tr us t e dOpe r a t i n gRoot( TOR) " . Th ec ompone n ti nMi c r os of tWi n dowst h a tma n a ge st r us tf unc t i ona l i t yf or" Pa l l a di um" us e r modepr oc e s s e s( a ge n t s ) .Th en e x use x e c ut e si nke r n e lmodei nt h et r us t e ds pa c e .I t pr ovi de sba s i cs e r vi c e st ot r us t e da ge n t s ,s uc ha st h ee s t a bl i s hme n toft h epr oc e s s me c h a ni s msf orc ommuni c a t i n gwi t ht r us t e d a g e n t sa n dot h e ra ppl i c a t i ons ,a n ds pe c i a l t r us ts e r vi c e ss uc ha sa t t e s t a t i onofr e que s t sa n dt h es e a l i nga n duns e a l i ngofs e c r e t s .

2. 2. 2 TRUSTED AGENT:- A t r us t e da ge n ti sapr ogr a m,apa r tofapr ogr a m,oras e r vi c e t h a tr un si nus e rmodei nt h et r us t e ds pa c e .At r us t e da ge n tc a l l st h en e x usf ors e c ur i t y r e l a t e ds e r vi c e sa n dc r i t i c a lge n e r a ls e r vi c e ss uc ha sme mor yma n a ge me n t .A t r us t e d a ge n ti sa bl et os t or es e c r e t sus i n gs e a l e ds t or a gea n da ut h e n t i c a t e si t s e l fus i ngt h e a t t e s t a t i ons e r vi c e soft h ene x us .On eoft h ema i npr i n c i pl e soft r us t e da ge n t si st h a tt h e y c a nbet r us t e dorn ott r us t e dbymul t i pl ee n t i t i e s ,s uc ha st h eus e r ,a nI Tde pa r t me n t ,a me r c h a n torav e n dor .Ea c ht r us t e da ge n tore n t i t y on t r ol si t sowns phe r eoft r us t ,a n d t h e yn e e dn ott r us torr e l yone a c hot h e r .

Toge t h e r , t h en e x usa n dt r us t e da ge n t spr ovi det hef ol l owi ngf e a t ur e s : •

Tr us t e dda t as t or a ge ,e n c r y pt i ons e r vi c e sf ora ppl i c a t i onst oe n s ur e da t ai n t e gr i t ya n dpr ot e c t i on

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

12

Mi c r os of tPa l l a di um •

Aut h e n t i c a t e db oot ,f a c i l i t i e st oe n a bl eh a r dwa r ea n ds of t wa r et o a ut h e n t i c a t ei t s e l f

Fr om t h epe r s pe c t i v eofpr i va c y( a n da n t i vi r uspr ot e c t i on ) ,on eoft h eke y b e n e f i t sof" Pa l l a di um"i st h ea bi l i t yf orus e r st oe f f e c t i v e l yde l e ga t ec e r t i f i c a t i onofc ode . Any on ec a nc e r t i f y" Pa l l a di um"h a r dwa r eors of t wa r e ,a n di ti se x pe c t e dt h a tma nyc ompa ni e s a n dor ga ni z a t i onswi l lof f e rt hi ss e r vi c e .Al l owi ngmul t i pl epa r t i e st oi n de pe n de n t l ye v a l ua t ea nd c e r t i f y" Pa l l a di um" c a pa bl es y s t e msme a n st h a tus e r swi l lb ea bl et oob t a i nve r i f i c a t i onoft h e s y s t e m' sope r a t i onf r om or ga ni z a t i on st h a tt h e yt r us t .I na ddi t i on ,t hi swi l lf or mt h eba s i sf ora s t r on gb us i ne s si nc e n t i v et op r e s e r v ea n de nha n c epr i v a c ya n ds e c ur i t y .Mor e ov e r ," Pa l l a di um" a l l owsa nynumbe roft r us t e di n t e r n a lore x t e r n a le n t i t i e st oi n t e r a c twi t hat r us t e dc ompon e n tor t r us t e dpl a t f or m.

Th ei ni t i a lv e r s i onofPa l l a di um wi l lr e qui r ec h a n ge st of i vepa r t soft h ePC' s

h a r dwa r e .Ch a n ge swi l lber e qui r e dt ot h eCPU,t h ec hi ps e t( ont h emot h e r b oa r d) ,t h ei n put de vi c e s( e . g.ke y b oa r d) ,a n dt h evi de oou t pu tde vi c e s( gr a phi c spr oc e s s or ) .I na ddi t i on ,an e w c ompon e n tmus tbe a dde d:a t a mpe r r e s i s t a n ts e c ur ec r y pt ogr a phi cc opr oc e s s or ,whi c h Mi c r os of tc a l l sSCPorSPP •

Al t h ought h eSCPi st a mpe r r e s i s t a n t ,i ti sl i ke l yt h a tas ki l l e da t t a c ke rwi t hphy s i c a l a c c e s st ot h ei ns i deofaPa l l a di um PCc a ns t i l lc ompr omi s ei tors ubve r ti t spol i c i e si n s omewa y .

•

Soi ti spos s i bl et h a ta na t t a c ke rwi t hphy s i c a la c c e s sc a ns t i l lc ompr omi s et h es y s t e m, e v e nt h ought h eSCPi sme a n tt ob et a mpe r r e s i s t a n t ,pa r t l yb e c a us eot h e rc ompon e n t s ( l i keRAM)a r el e s sr ob us ta ga i n s tmodi f i c a t i on .Pa l l a di um pr i ma r i l yde f e n dse f f e c t i v e l y a ga i ns tt woc l a s s e sofa t t a c ks :( 1)r e mot en e t wor kmoun t e da t t a c ks( b uf f e rov e r f l owsa nd ot h e rpr og r a mmi ngf l a ws ,ma l i c i ousmobi l ec ode ,e t c . ) ,b e c a us ee v e ni fs omema l i c i ous c odei si ns t a l l e di non epa r toft h es y s t e m,i ts t i l lc a n' te f f e c t i ve l ys ubv e r tt h epol i c yof a n ot h e rpa r toft h es y s t e m,a n d( 2)l oc a ls of t wa r e b a s e da t t a c ks ,i n c l udi ngt hi ngsl i ke us i n gade b ugge rt ot r yt or e a dapr ogr a m' si n t e r na ls t a t ewhi l ei t ' se x e c ut i n gort ot r yt o s ubve r ti t spol i c y .Th us ,Pa l l a di um c a npr ob a bl ygua r a n t e et h a ty ou c a n' twr i t eor

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

13

Mi c r os of tPa l l a di um

downl oa da nys of t wa r e( a n dn ob odye l s ec a nwr i t eorupl oa dt oy oua nys of t wa r e )whi c h woul dc ompr omi s et h epol i c yofs of t wa r er unni ng l oc a l l ywhi c hi sma ki ng us eof Pa l l a di umt r us tf e a t ur e s . •

Pa l l a di um' sc h a n ge st ot h eCPU a l l ow i tt ob epl a c e di n t oan e w modewh e r ec e r t a i n a r e a sofme mor ya r er e s t r i c t e dvi aat e c hni quec a l l e d" c odec ur t a i ni ng"t oa nul t r a pr i vi l e ge dpi e c eofc odec a l l e dt h e" n ub"or" TOR" .( " Nub "i st h ePa l l a di um t e a m' st e r m f ort hi sc ode ,a n d" TOR" ,f or" Tr us t e dOpe r a t i n gRoot " ,i st h eof f i c i a lpubl i ct e r m. )Th e n ubi saki n doft r us t e dme mor yma n a ge r ,whi c hr unswi t hmor epr i vi l e get h a na n ope r a t i n gs y s t e mke r ne l .Th en uba l s oma na ge sa c c e s st ot h eSCP.

•

Th eSCPi sa n8bi tt a mpe r r e s i s t a n tc r y pt ogr a p hi cs ma r t c a r dwhi c hc on t a i nsuni que ke y s ,i nc l udi n gpubl i cke y pa i r s( 2048bi tRSA) ,a n ds ymme t r i cke y sf orAESi nCBC mode .Th e s eke y sa r euni quepe rma c hi nea n dt h eSCPd oe sn otr e v e a lt h e mt oa ny t hi ng ou t s i det h eSCP' ss e c ur i t ype r i me t e r .I ta l s oc ont a i n sav a r i e t yofot h e rc r y pt ogr a phi c f un c t i on a l i t y ,i nc l udi n gSHA1,RSA,AES,a n dot h e rc i phe ri mpl e me n t a t i on s ,as ma l l a moun tofme mor y ,a n d a mon ot on e

c oun t e r .Th eSCP c a n do a n umbe rof

c r y pt og r a phi cpr ot oc ol s .I ta l s oc on t a i n sat hi ngc a l l e daPCR.( It hi n kt h a ts t a n dsf or " pl a t f or mc onf i gur a t i onr e gi s t e r " . )

•

Wh e ny ouwa n tt os t a r taPa l l a di um PCi nt r us t e dmode( n ot et h a ti tdoe s n ' thave t os t a r t i nt r us t e dmode ,a n d,f r om wha tMi c r os of ts a i d,i ts oun dsl i key ouc oul de v e ni ma gi ne b oot i n gt h es a meOSi ne i t h e rt r us t e dorun t r us t e dmode ,b a s e donaus e r ' sc h oi c ea tb oot t i me ) ,t h es y s t e mh a r dwa r epe r f or mswh a t ' sc a l l e da n" a ut h e n t i c a t e db oot " ,i nwhi c ht h e s y s t e mi spl a c e di nakn owns t a t ea n dan ubi sl oa de d.Ah a s h( It hi n ki t ' sSHA1)i st a ke n oft h en ubwhi c hwa sj us tl oa de d,a n dt h e160bi tha s hi ss t or e dun a l t e r a bl yi nt h ePCR, a n dr e ma i nst h e r ef ora sl on ga st h es y s t e mc on t i n ue st oope r a t ei nt r us t e dmode .Th e n t h eope r a t i n gs y s t e m ke r n e lc a nb oot ,b utt h eke yt ot h et r us ti nt h es y s t e mi st he

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

14

Mi c r os of tPa l l a di um

a ut h e n t i c a t i onoft h en ub .Asl on ga st h es y s t e mi sup,t h eSCPkn owse x a c t l ywhi c hn ub i sc ur r e n t l yr unni n g;be c a us eoft h ewa yt h eCPU wor ks ,i ti sn otp os s i bl ef ora nyot h e r s of t wa r et omodi f yt h en ubori t sme mor yors ubv e r tt h en ub' spol i c i e s .Then ubi si n s omes e ns ei nc h a r geoft h es y s t e ma tal ow l e ve l ,b uti tdoe s n' tus ua l l ydot hi n gswhi c h ot h e rs of t wa r ewoul dn ot i c eunl e s si t ' sa s ke dt o.

•

Th en ubi n t e r f a c e swi t hot h e rs of t wa r eont h es y s t e m byme a nsofpr ogr a ms( ou t s i det h e n ub )c a l l e dt r us t e da ge n t s( orTAs ) .Th eTAsc a ni mpl e me n ts ophi s t i c a t e dpol i c i e sa nd a ut h e n t i c a t i onme t h ods ,wh e r et h en ub( a n dSCP)j us ti mpl e me n tf a i r l ys i mpl epr i mi t i ve s . ATAc a na l s oc ommuni c a t ewi t hus e r s pa c epr ogr a ms( a tl e a s t ,t h a twi l lbeaf e a t ur eof Mi c r os of t ' sn ub;ot h e rpe opl ec a nwr i t et h e i rownn ub swhi c hc a ns uppor tdi f f e r e n tki n ds ofTAsore v e ndowi t h outTAse n t i r e l y ) .Th eTAsa r epr ot e c t e dbyh a r dwa r ef r om on e a n ot h e ra n df r omt h er e s toft h es y s t e m.

•

Ev e nPCIDMAc a n' tr e a dorwr i t eme mor ywhi c hh a sb e e nr e s e r v e dt oan ub' sorTA' s us e( i n c l udi ngt h en ub' sorTA' sc ode ) .Thi sme mor yi sc ompl e t e l yi na c c e s s i bl ea n dc a n onl yb ea c c e s s e di ndi r e c t l yt h r ough APIc a l l s .Th ec hi ps e ton t h emot h e r b oa r di s modi f i e dt oe nf or c e st hi ss or tofr e s t r i c t i on .

•

Th eSCPpr ovi de saf e a t ur ec a l l e d" s e a l e ds t or a ge "byme a nsoft woAPIc a l l s( c a l l e d SEALa n dUNSEAL) .I faTAr unni ngonas y s t e mi nt r us t e dmodewa n t st ous es e a l e d s t or a ge ,i tc a nc a l li n t ot h eAPI si mpl e me n t e di nt h en ub .

•

Se a l e ds t or a gei si mpl e me n t e dbyme a n sofe n c r y pt i on( s e a l i ng)orde c r y pt i on( uns e a l i ng) wi t has ymme t r i cc i ph e rWhe nt h eSCPi sgi v e nda t at os e a l ,i t ' sgi ve nt woa r gume n t s :t h e da t ai t s e l fa n da160bi t" n ubi de n t i f i e r "

•

Se a l i ngi spe r f or me dbypr e pe n di ngt h en ubi de n t i f i e rt ot h eda t at ob es e a l e d,a n dt h e n e n c r y pt i n gt h er e s ul twi t hapr i va t es y mme t r i cke y-t h e" pl a t f or ms pe c i f i cke y " ,whi c h

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

15

Mi c r os of tPa l l a di um

v a r i e sf r om ma c hi net oma c hi nea n di ss e c r e t .Th a tke yi ske ptwi t hi nt heSCPa n di sa uni quei de n t i f i e rf ort h ema c hi newhi c hpe r f or me dt h es e a l i ngope r a t i on •

Th eSCP a c t ua l l ya l s o pr e pe n dsar a n dom n on c et ot h eda t at ob es e a l e d be f or e e n c r y pt i on( a n ddi s c a r dst h en onc euponde c r y pt i on ) .Thi si sac l e ve rpr i v a c yf e a t ur e whi c hpr e v e n t ss ome on ef r om c r e a t i n ga na ppl i c a t i onwhi c h" c ooki e sy ou"byr e c or di n g t h eou t pu tofs e a l i nga ne mpt ys t r i n g( a n dt h e nus i n gt h er e s ul ta sape r s i s t e n tuni que i de n t i f i e rf ory ourma c hi ne ) .Apr ogr a m whi c ht r i e dt o" c ooki ey ou"t hi swa ywoul df i nd t h a t ,b e c a us eoft h er a n dom n on c e ,t h er e s ul tofs e a l i n gagi ve ns t r i n gi sc ons t a n t l y c ompl e t e l ydi f f e r e n t ,a n dn ous e f uli nf or ma t i ona b outt h ei de n t i t yoft h ema c hi nei s r e v e a l e dbyt h es e a l i ngope r a t i on .

•

Af t e re n c r y pt i on ,t h eSCPr e t ur n st h ee n c r y pt e dr e s ul ta st h er e t ur n v a l ueoft h eSEALope r a t i on .

•

Wh e na nSCPi sgi v e ne n c r y pt e dda t at oUNSEAL,i ti n t e r n a l l ya t t e mpt st ode c r y ptt h e e n c r y pt e dda t aus i n gi t spl a t f or ms pe c i f i cke y .Thi sme a n st h a t ,i ft h ee n c r y pt e dda t awa s or i gi na l l ys e a l e d on adi f f e r e n tma c hi ne ,t h eUNSEAL ope r a t i on wi l lf a i lout r i gh t i mme di a t e l y .( Youc a n' tt a keas e a l e df i l ea n dt r a ns f e ri tt oa n ot h e rma c hi nea n dun s e a li t t h e r e ;b e c a us et h epl a t f or ms pe c i f i cke yi s us e df ore n c r y pt i ona n dde c r y pt i on ,a n dc a n' tb ee x t r a c t e df r om t h eSCP,y ouc a nonl y UNSEALda t aont h es a mema c hi neonwhi c hi twa sor i gi na l l ySEALe d. )

•

I ft h ede c r y pt i oni ss uc c e s s f ul ,t h eSCPpe r f or msas e c on dc h e c k:i te x a mi ne st h en ub i de n t i f i e rwhi c hr e s i de swi t hi nt h ede c r y pt e dda t a .Th en ubi de n t i f i e rwa ss pe c i f i e da tt h e t i met h eda t awa sor i gi na l l ySEALe d,a n di n di c a t e swhi c hn ubi sa l l owe dt or e c e i v et h e de c r y pt e dda t a .I ft h en ubi de n t i f i e rf ort h ede c r y pt e dda t ai si de n t i c a lt ot h en ubi de n t i f i e r whi c hi sc ur r e n t l ys t or e di nt hePCR( whi c hi st h eSHA1h a s hoft hec ur r e n t l y r unni ng n ubont h ema c hi nea tt h emome n tUNSEALwa sc a l l e d) ,t h eUNSEALi ss uc c e s s f ula n d t h ede c r y pt e dda t ai sr e t ur n e dt ot h ec a l l i ngn ub .Howe v e r ,i ft hen ubi de n t i f i e rdoe sn ot

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

16

Mi c r os of tPa l l a di um

ma t c ht h ec on t e n t soft h ePCR,t h eSCPc on c l ude st h a tt h en ubwhi c hi sc ur r e n t l yr unni ng i sn ote n t i t l e dt or e c e i v et hi sda t a ,a n ddi s c a r dsi t . •

Th us ,s e a l i ngi sspecific to a physical machine a n da l s ospecific to a nub.Da t as e a l e don on ema c hi nef orapa r t i c ul a rn ubc a nn otb ede c r y pt e donadi f f e r e n tma c hi neorun de ra di f f e r e n tn ub .Ana ppl i c a t i onwhi c ht r us t sapa r t i c ul a rn ub( a n di sr unni ngun de rt h a tn ub ) c a ns e a li mpor t a n ts e c r e tda t aa n dt h e ns t or et h er e s ul t i ngs e a l e dda t as a f e l yona n un t r us t e dh a r ddr i ve ,ore v e ns e n di tov e ran e t wor k.

•

I fy our e b oott h ema c hi neun de rade b ugge r ,t h e r ei sn ot e c h ni c a lpr obl e m,a n dy ouc a n de b ugt h es of t wa r ewhi c hc r e a t e dt h ee n c r y pt e df i l e .Howe v e r ,s i nc ey oua r e n' tr unni ng t h epr ope r( n ode b ugge r -f r i e n dl y )n ub ,t h ede b ugge rwi l lwor k,b utt h eUNSEALc a l l won ' t .Th eSCPwi l lr e c e i vet h eUNSEALc a l l ,e xa mi net h ePCR,a n dc on c l udet h a tt h e c ur r e n t l y r unni ngn ubi sn otc l e a r e d( s ot os pe a k)t or e c e i v et h es e a l e dda t a .You r a ppl i c a t i onsc a nonl yde c r y pts e a l e dda t ai ft h e ya r er unni n gunder the same machine a n dunder the same software environment wi t hi nwhi c ht h e yor i gi na l l ys e a l e dt h a tda t a !

•

Thi si sr e ma r ka bl yc l e v e r .Wh e ny oua r er unni ngun de rat r us t e dn ub ,y oura ppl i c a t i on s c a nus et h eSCPt ode c r y pta n dpr oc e s sda t a ,b uty ouc a n' tr uns of t wa r ewhi c hs ubve r t sa TA' spol i c y( b e c a us et h en ubwi l ln otpe r mi tt h epol i c yt ob es ubv e r t e d) .

•

Wh e ny oua r en otr un ni ngun de rat r us t e dn ub ,youc a nr uns of t wa r ewhi c hs ubv e r t sa TA' spol i c y( b e c a us et h en ubi s n' ta bl et opr e v e n ti t ) ,b uty oura ppl i c a t i onswi l ln o l on ge rb ea bl et ode c r y pta nys e a l e dda t a ,b e c a us et h eSCPwon' tb ewi l l i ngt ope r f or m t h ede c r y pt i on .

•

Th e r ei sal on gdi s c us s i onofh ow y ouc a nma keab a c kup,orupgr a dey ours y s t e m,or mi gr a t ey ours of t wa r ea n dda t at oan e ws y s t e m,e t c .Th ede f a ul twi t hs e a l e ds t or a gei s t h a ta nys e a l e dda t awi l lb eun us a bl ewhe nmi gr a t e dt oan e ws y s t e m.TheMi c r os of tn ub pr ovi de swr a ppe r sa r oun dt h eSCP' ss e a l i ngf e a t ur e swhi c ha l l ow t h es of t wa r ewhi c h

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

17

Mi c r os of tPa l l a di um

pe r f or mst h es e a l i ngope r a t i ont os pe c i f yami gr a t i onpol i c ya tt h et i met h es e a l i ng ope r a t i oni sor i gi na l l y pe r f or me d.Th emi gr a t i onpol i c yc a nb e( a ppr oxi ma t e l y )on eoft h e f ol l owi n g,a tt h es of t wa r e ' ss ol eop t i on :( 1)Mi gr a t i oni spr e v e n t e de n t i r e l y ,a n dt h eda t a mus tdi ewi t ht h ec ur r e n tPCwh e r ei twa sc r e a t e d .( 2)Mi gr a t i oni spe r mi t t e dupons ome ki n d ofa ut h e n t i c a t i onbyal oc a lus e r( e . g.apa s s wor d)whi c hwi l lde c r y ptorc omma n dt h e de c r y pt i onofda t at e mpor a r i l yi nor de rt ope r mi ti tt ob emi gr a t e d.( 3)Mi gr a t i oni s pe r mi t t e dwi t ht h ea s s i s t a n c ea n dc on s e n tofa3r dpa r t y. •

Pa l l a di um' smodi f i c a t i on st oi n puta n dout pu th a r d wa r ewi l lpr e v e n ts of t wa r ef r omdoi n g c e r t a i nki ndsofmoni t or i n ga n ds poof i ng,a swe l la s" s c r e e ns c r a pi ng" .A pr ogr a m wi l l b ea bl et oa s kPa l l a di umt odi s pl a yadi a l ogb oxwhi c hc a n' tb e" obs c ur e d"or" ob s e r v e d" byot h e rs of t wa r e ,a n dPa l l a di um h a r dwa r ec a ne nf or c et h e s ec on di t i on s .An dt h e r ei sa wa yt ob es ur et h a ti n puti sc omi ngf r om aphy s i c a li nputde vi c ea n dn ots poof e dby a n ot h e rpr ogr a m.

•

Th es e c ur eout pu tf e a t ur e sa l s ope r mi t ,e . g. ,aDVD pl a y e rpr ogr a mt opr e v e n tot h e r s of t wa r ef r om ma ki ngs c r e e nc a pt ur e s .Th ei ni t i a lv e r s i onofPa l l a di um doe sn otc on t r ol a udi oou t pu ti nt hi swa y ,s oy ouc a ns t i l lr e c or da l ls oun dou t pu tvi as ome t hi n gl i ke Tot a l Re c or de r .

•

I npr i n c i pl e ,n uba n dke r n e la r ei nde pe n de n t ,s oan on Mi c r os of tke r n e lc oul dr unona Mi c r os of tn ub ,orvi c eve r s a .Pa t e n ta n dc opy r i ghti s s ue smi gh tpr e v e n tt hi sf r om b e i ng don ei npr a c t i c e ,b uti ti sa ppa r e n t l yt e c hni c a l l ypos s i bl ewi t hi nt h ede s i gnofPa l l a di um.

• Mi c r os of t ' sn ub ,i n c l udi ngi t ss our c ec ode ,wi l lb epubl i s h e df orr e vi e w bya ny onewh o wa n t st oe x a mi nei t ,i nor de rt oa l l ow a l lofMi c r os of t ' sc l a i msa b outi t ss e c ur i t y pr ope r t i e st ob ev e r i f i e d.The r ei sn opa r tofPa l l a di um' sde s i gnorc odewhi c hn e e dst o b eke pts e c r e t ,a l t h oughe a c hSCPwi l lc on t a i ns e c r e tc r y pt ogr a phi cke y sl oa de da tt h e t i meofi t sma n uf a c t ur e .Mi c r os of twi l le nc our a gen on Mi c r os of tpe opl et or e a da nd

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

18

Mi c r os of tPa l l a di um

di s c us si t sn ub .Youwi l la l s obea bl et oc r e a t ey ourownn ub ,e x c e ptt h a tc h a n gi ngt h e n ubwi l l( a sdi s c us s e da b ov e )pr e v e n tpr e vi ous l y s e a l e dda t af r ombe i n gde c r y pt e d. • Mi c r os of ts ugge s t st h a tPa l l a di um i sf l e xi bl ee n ought h a tma nye n t i t i e sc oul dus ei tt o c r e a t et h e i rownpol i c i e s ,j udgme n t s ,c e r t i f i c a t i ons e r vi c e s ,e t c .Pa l l a di um h a samor e r ob us tt e c hni c a le nf or c e me n tme c h a ni s mt h a ne i t he roft h os es t a n da r ds .

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

19

Mi c r os of tPa l l a di um

3. COMPARISON OF TCPA AND PALLADIUM TCPA s t a n dsf or‘ Tr us t e dComput i n gPl a t f or m Al l i a n c e ’ ,a ni ni t i a t i v el e dby I n t e l .Th e i rs t a t e dg oa li sa‘ n e wc omput i n gpl a t f or mf ort h en e x tc e n t ur yt h a twi l lpr ovi def or i mpr ov e dt r us ti nt h ePC pl a t f or m’ .Pa l l a di um i sas of t wa r et h a tMi c r os of ts a y si tpl a nst o i nc or por a t ei nf ut ur ev e r s i on sofWi n dows ;i twi l lb ui l dont h eTCPA h a r dwa r ea n dwi l la dd s omen e wf e a t ur e s .

TheTCPAa n dPa l l a di umr e l yont h ea ddi t i ont ot h eh a r dwa r eofn or ma lPC’ s . Whi l ePa l l a di um c a l l sf ormor ee x t e ns i vec ha n ge s ,t h e modi f i c a t i onsa r er e ma r ka bl ys i mi l a r . Bot hc a l lf oran e wc hi pt ob epl a c e dont h emot h e r b oa r dofa l lf ut ur ec omput e r s .Th ec hi pwoul d i nc l udene we n c r y pt i onf unc t i onsa swe l la sas ma l la moun tofme mor yt h a twoul da c ta sa di gi t a lv a ul tt os t or ei mpor t a n tke y st ode c r y ptpr ot e c t e dda t a .Th eTCPAr e f e r st ot h ec hi pa st he “ Tr us t e dPl a t f or mModul e ” ,as uc c e s s ort ot h eI n t e l ’ spr oc e s s or .Mi c r os of tr e f e r st ot h eh a r dwa r e c ompon e n t sofPa l l a di uma sSe c ur eCr y pt ogr a phi cCop r oc e s s ororSCP.

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

20

Mi c r os of tPa l l a di um

4. ADVANTAGES OF PALLADIUM 4. 1BLOCKMALI CI OUSCODE On eoft h emor epr omi s i nga s pe c t st h a tPa l l a di um wi l lb r i n gt oe n dus e r s i st hea bi l i t yt oa u t h e n t i c a t et h epr og r a mst h e yus e .A us e rwi l la l l ow c e r t a i na ppl i c a t i ons a c c e s st or e s our c e s .Or i gi na l l y ,i twa st h ough tt h a tPa l l a di umwoul dn otpe r mi tuna ut h or i z e d c odet or unonas y s t e m;t h e r e f or ei twoul ds t opt h ee x e c ut i onofpr ogr a msl i kevi r us e s . Re c e n t l y ,h owe v e r ,Mi c r os of th a sb a c ke dof ft h e s ec l a i msa b outPa l l a di um.Now i ts i mpl y c l a i mst h a tPa l l a di um wi l lpr ovi deas e c ur ee x e c ut i one nvi r onme n tf ora n t i vi r uspr ogr a ms ( MSPa l l a di um Te c hni c a lFAQ) .Th eb e n e f i tofas e c ur ee nvi r onme n ti st h a tvi r us e sa nd ot h e rma l i c i ousc odec a nn ota l t e rt h eb e h a vi orofaPa l l a di ume n a bl e da n t i vi r uspr ogr a m. Mi c r os of th a sde c i de dt h a tl e ga c ys uppor tf ore xi s t i n gWi ndowsa ppl i c a t i onsi si mpor t a n t e n oughs oa sn ott or e qui r ea l lpr ogr a mst ob er e wr i t t e nf orPa l l a di um. Thi sme a n st ha t e xi s t i n gpr ogr a msa n dvi r us e swi l ls t i l lr unonaPa l l a di um s y s t e m.Th ei mpl i e db e ne f i tt o Pa l l a di um,a s i de f r om t h ea dde d pr ot e c t i on t oa n t i vi r us pr ogr a ms ,i st h ei nc r e a s e d a ut h e n t i c a t i onwi t hn e wPa l l a di um e n a bl e dpr ogr a ms .I fPa l l a di um pr ol i f e r a t e sa sMi c r os of t h ope s ,t h e r ewi l lc omeat i mewh e nl e ga c ys uppor twi l ln otb ei mpor t a n ta ny mor e ,a nd un a ut h or i z e dpr ogr a mswi l ln otb er un .I ta ppe a r sa st h ought hi si st h ef i r s ts t e pont h ewa y t ot h a ti de a .

4. 2DI GI TALRI GHTMANAGEMENT

Th edi gi t a lr i gh t sma na ge me n t( DRM)pot e n t i a lwi t haPa l l a di um s y s t e m i swha tc on t e n tp r oduc e r sa n ddi s t r i b ut or sa r ei n t e r e s t e dwi t h .Di gi t a lr i gh t sma n a ge me n th a s t od owi t hc on t r ol l i ngwh oma n dh owl on gc on t e nti sdi s t r i b ut e d.Mi c r os of tt ou t sPa l l a di um a sb e i ngi nde pe n de n tofa nye xi s t i n gDRM t e c hn ol ogyt oda y( MS Pa l l a di um Te c hni c a l FAQ) . Ont h eot h e rh a n d,i ta c kn owl e dge st h a tPa l l a di um s y s t e msa r eb e i ngde s i gn e dt o c oi n c i dewi t hDRM t e c hn ol ogi e st oh e l pc on t e n tde v e l ope r s( MSPa l l a di umTe c hni c a lFAQ) . APa l l a di um s y s t e mi ss uppos e dt oma kei te a s i e rf ori n di vi dua lus e r st oi mpl e me n tDRM on

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

21

Mi c r os of tPa l l a di um

t h e i rownpe r s on a lda t a . Fore x a mpl e ,aus e rma ys e t upav a ul tc on t a i ni ngc r e di tc a r d i nf or ma t i on .Pa l l a di um woul da l l ow t h eus e rt os e t upagr oupoft r us t e da ge n t st h a twoul d h a v ea c c e s st oa l lorc e r t a i npa r t soft h a tda t a .Al on gwi t hda t a ,Pa l l a di um pr omi s e st ogi v e us e r st h eopt i ont or e gul a t et i mei n t e r va lt h a tda t ai sa v a i l a bl et ot h et r us t e da ge n t st h e yh a ve s pe c i f i e d.

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

22

Mi c r os of tPa l l a di um

5. DISADVANTAGES OF PALLADIUM 5. 1UPGRADES

I nor de rt ot a kea dv a n t a geofwh a tPa l l a di um i ss uppos e dt oof f e r ,us e r s wi l lh a v et oupgr a deb ot ht h e i rc ur r e n tope r a t i n gs y s t e msa n dh a r dwa r e .Th ene x tve r s i onof Wi ndows ,dueouti n2004,wi l lne e dh a r dwa r es uppor tf orPa l l a di um f e a t ur e st owor ka ta l l ( MSPa l l a di um Te c hni c a lFAQ) .I ti sun c l e a ra tt hi spoi n twh e t h e rt h en e x tma j orWi ndows r e l e a s ewi l lr unonn on Pa l l a di um c ompa t i bl eha r dwa r e . Th ec e n t r a lpr oc e s s i nguni twi l l h a v et os upp or tt h et r us t e de x e c ut i onmodet h a tPa l l a di um of f e r s .I ti sc l e a rt h a tf ut ur e mot h e r b oa r dswi l ln e e dt oc on t a i nt h es e c ur i t yc hi pf orPa l l a di um t or unpr ope r l y( MS Pa l l a di um Te c hni c a lFAQ) . Mor eupgr a de sma yb eofc on c e r ni nt h ea r e aofgr a phi c h a r dwa r ea n dpe r i ph e r a l ss uc ha ske y b oa r dsa n dmi c eb e c a us eoft h ee n c r y pt i oni nb e t we e n t h e s eh a r dwa r ede vi c e sa n dt h es of t wa r et h e ya r ei n t e r a c t i n gwi t h .

5. 2I NTEROPERABI LI TY Pa l l a di um ha sr e c e i ve dwi dec r i t i c i s mf orbe i n gas oc a l l e dGe ne r a lPubl i c Li c e n s e( GPL)ki l l e r( An de r s on ) .Now,Mi c r os of tc l e a r l ys t a t e st h a tt h ePa l l a di ume n a bl e d ope r a t i n gs y s t e mwi l lbea bl et oc oe xi s twi t ha nyLi n uxb a s e ds y s t e m,j us ta st h e i rope r a t i n g s y s t e msdot oda y .Th eque s t i ont h a tc ome st omi ndi s ,wi l lt h a tc h a n gewi t hwi des pr e a d a dop t i onoft h ePa l l a di um a r c hi t e c t ur e ?Fore x a mpl e ,i fab a n ks wi t c h e sov e rt oe x c l us i ve l y Pa l l a di um s y s t e ms ,woul dc us t ome r soft h a tb a n kwh odon ’ tr unPa l l a di um s y s t e msb ea bl e t ous et h eb a n k’ ss e r vi c e s ? Pa l l a di um i sn otadi r e c ta t t a c konGPLorLi n uxb a s e ds y s t e m, b uti sa na t t e mptt oc h a n get h er ul e soft h en a me s .

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

23

Mi c r os of tPa l l a di um

5. 3LEGACYPROGRAMS

ByMi c r os of t ’ sowna dmi s s i on ,t h ePa l l a di ume n a bl e dope r a t i n gs y s t e m wi l l n oth a vepe r f e c tl e ga c ys uppor t( MSPa l l a di umTe c hni c a lFAQ) .Al le xi s t i n gde b ugge r swi l l n e e dt ob eupda t e di nor de rt owor kun de rPa l l a di um. Pe r f or ma n c et ool st h a tmoni t or ope r a t i n gs y s t e m orus e rpr oc e s s e swi l ln e e dt ob eupda t e d.Anyme mor ydumps of t wa r e wi l ln otwor kc or r e c t l ywi t h outc h a n ge st os uppor tPa l l a di um. Hi be r n a t i onf e a t ur e sof mot h e r b oa r dswi l ln e e dt ob eupda t e da swe l l .Me mor ys c r ubr out i ne s ,a tt h eh a r dwa r el e v e l , wi l ln e e dt ob er e wr i t t e nt oa c c ommoda t ePa l l a di um.Th er e a s onf ora l loft h e s eupda t e si s t h et r us t e da ge n tp ol i c yt h a tPa l l a di um e nf or c e s . Nopr ogr a mi sa l l owe dt oi nv a det h e e x e c ut i ons pa c ef ora nyot h e rpr ogr a m. I nt h ec a s eofade b ugge r ,i twi l lne e ds pe c i a l pe r mi s s i onf r om t h eope r a t i n gs y s t e mt omoni t ort h ee x e c ut i ons pa c eoft h et a r ge tp r ogr a m. Ev e ns of t wa r ede v e l ope df ort h eTCPA s pe c i f i c a t i onwi l ln e e dt ob er e wr i t t e ni fi tt r i e st o di r e c t l ywr i t et oa nyTCPA h a r dwa r e .Thi sde s c r i pt i onofi nc ompa t i bl el e ga c ypr ogr a msi s byn ome a nsc ompr e he n s i ve ;i ti ss i mpl ywh a tMi c r os of ti sdi s c l os i nga tt hi st i me( MS Pa l l a di umTe c hni c a lFAQ) .

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

24

Mi c r os of tPa l l a di um

6. CONCLUSION Toda y ,I Tma n a ge r sf a c et r e me n dousc h a l l e n ge sduet ot h ei nh e r e n tope n n e s s ofe n dus e rma c hi ne s ,a n dmi l l i onsofpe opl es i mpl ya v oi ds omeonl i net r a n s a c t i onsoutoff e a r . Howe v e r ,wi t ht h eus a geof" Pa l l a di um"s y s t e ms ,t r us t wor t h y ,s e c ur ei n t e r a c t i onswi l lb e c ome pos s i bl e .Thi st e c hn ol ogywi l lpr ovi det ough e rs e c ur i t yde f e n s e sa n dmor ea b un da n tpr i v a c y b e n e f i t st h a ne v e rbe f or e .Wi t h" Pa l l a di um, "us e r swi l lh a veun pa r a l l e l e dpowe rov e rs y s t e m i n t e gr i t y ,pe r s on a lpr i va c ya n dda t as e c ur i t y .

I n de pe n de n ts of t wa r ev e n dor s( I SVs )t h a twa n tt h e i ra ppl i c a t i on st ot a ke a dv a n t a geof" Pa l l a di um"b e n e f i t swi l lne e dt owr i t ec odes pe c i f i c a l l yf ort hi sn e we nvi r onme n t . An e wge n e r a t i onof" Pa l l a di um" -c ompa t i bl eh a r dwa r ea n dpe r i ph e r a l swi l ln e e dt ob ede s i gn e d a n db ui l t .Th e" Pa l l a di um"de v e l opme n tpr oc e s swi l lr e qui r ei n dus t r ywi dec ol l a b or a t i on .I tc a n onl ywor kwi t hb r oa dt r us ta n dwi de s pr e a da c c e pt a n c ea c r os st h ei ndus t r y ,b us i ne s s e sa nd c on s ume r s .

" Pa l l a di um"i sn otama gi cb ul l e t .Cl e a r l y ,i t sb e n e f i t sc a nonl yb er e a l i z e di f i ndus t r yl e a de r swor kc ol l a b or a t i v e l yt ob ui l d" Pa l l a di um" -c ompa t i bl ea ppl i c a t i onsa n ds y s t e ms -a n dt h e nonl yi fpe opl ec h oos et ous et h e m.Butt h e" Pa l l a di um"vi s i one n de a v or st opr ovi de t h et r us t wor t hi n e s sn e c e s s a r yt oe n a bl eb us i ne s s e s ,gov e r nme n t sa n di ndi vi dua l st of ul l ye mb r a c e t h ei nc r e a s i ngdi gi t i z a t i onofl i f e .

TheI n t e r n e ta n dt h epr ol i f e r a t i onofdi gi t a lc on t e n th a v es pa r ke dt h en e e df or mor epr i va c ya n ds e c ur i t yofda t a .Th el oomi ngque s t i onwh e n e v e ra ny on et a l ksa b outs e c ur i t y a n dpr i v a c yi s :f orwh om? Pa l l a di um c e r t a i nl ygi v e sdi gi t a lc on t e n t 16pr ovi de r st h ec on t r ol ov e rt h e i rpr oduc tt h a tt h e yh a v ewa n t e df oral on gt i me .I nr e c e n tmon t h s ,Mi c r os of th a sc l e a r l y e mph a s i z e dt h eb e ne f i t st h a tt h ema r r i a geofPa l l a di um a n dDRM c a nb r i n gt oe n dus e r s . Mi c r os of tc l a i mst h a tus e r swi l lh a v ec ompl e t ec on t r oloft h e i rpe r s on a li nf or ma t i on . Th e Pa l l a di ume n a bl e dope r a t i n gs y s t e mi s n’ tduef ora tl e a s ta n ot h e ry e a r .I tc oul dt a kemon t h sa f t e r t h ei ni t i a lr e l e a s ef ora ny on et of e e li t se f f e c t s .I ti sc l e a r ,h owe v e r ,t h a twi de s pr e a da dopt i onof

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

25

Mi c r os of tPa l l a di um

Pa l l a di um wi l lf un da me n t a l l yc h a n geh owweus ea r epe r s on a lc omput e r s .Th eque s t i oni s ,wi l l t hi sc h a n geb ef ort h eb e t t e rort h ewor s e ?

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

26

Mi c r os of tPa l l a di um

7. REFERENCES 1. Anderson, R. “TCPA / Palladium Frequently Asked Questions Version 1.0.” July 2002. University of Cambridge Online. 5 Jan 2003 .

2. “Microsoft Palladium.” 11 Nov. 2002. Electronic Privacy Information Center Online. 5 January 2003 .

3. Boutin, Paul. “Palladium: Safe or Security Flaw?.” 12 Jul. 2002. Wired News Online. 31 Jan 2003 .

4. Hachman M., and Rupley S. “Microsoft's Palladium: A New Security Initiative.” 25 Jun. 2002. ExtremeTech Online. 5 Jan 2003 .

Di vi s i onofComput e rSc i e nc e ,SOE,CUSAT

27