Hardware based software Protection

Question 1

What is The Protection Pyramid ?

Answer 1

Secure Execution
Secure Storage
Attestation

Question 2

Secure Execution

Answer 2

The program running should not be tampered with

Question 3

Secure Storage

Answer 3

Secure storage of key

Question 4

Attestation

Answer 4

To check the integrity of the system. Providing the proof for an action/software running.
For e.g. if the software running is correct or someone tampered with it

Question 5

Need for Attestation

Answer 5

1. Device Identification(Mac and IP are not secure, can be spoofed )
2. Secure generation of Cryptographic keys
3. Secure storage of keys
4. Continuous health checks for possible compromise of the system

Question 6

Static Model vs Dynamic Model

Answer 6

Static Model: Protection in which system software components constitute a hash chain. Static because it is done once at startup. Integrity check is done only once.

Dynamic: Protection when the software is executed. Integrity of the code is concerned over here.

Question 7

Types of key in TPM

Answer 7

Endorsement key
Storage Root key
Attestation Identity key

Question 8

Limitation of TPM

Answer 8

Storage of all hash for each software release
Start is secure not the whole lifecycle
Single point of failure to relies on third party for a verifier to attest
All computer does not have TPM
Privacy concerns for keys