March 2009

Dear Sir`s,

The demand for trusted computing technology in embedded applications is constantly growing. While trusted computing technology for PCs is well established, its application in embedded systems with its resource constraints and its strict framework is still a challenge nowadays.

With this newsletter and the attached whitepaper we would like to give you an insight into this important technology.

We are looking forward to your questions and joint discussions of this topic. We will gladly show you our demonstrators in Bochum in order to illustrate our technical achievements.

Kind regards from the centre for IT Security in Bochum

Thomas Wollinger, Katrin Mannheims, Jan Pelzl

Trusted Computing meets embedded Applications

A new software version quickly updates an engine control unit of a vehicle. But how can the manufacturer make sure that only authorized software is installed on control units?

An industrial plant control receives readings from remote sensors via mobile or internet connection. However, how reliable is the information processed and sent by the sensors?

Using trusted computing, device manufacturers and users are able to verify the authenticity of a local or remote embedded system by installing a standardized Trusted Platform Module (TPM). All programs of a system can be checked, including operating systems, drivers and applications.

Using trusted computing, data and applications can be linked to particular system identity and/or system status. Therefore trusted computing provides a huge potential for improved security, reliability and trustworthiness of an embedded system.

Over the past years escrypt has effectively expanded and enriched its competence in the area of embedded trusted computing. Moreover, escrypt has managed to demonstrate its practice-oriented know-how in the area of trusted computing in numerous, successfully accomplished projects devoted to design and implementation of such systems. The combination of trusted computing hardware and software mechanisms was successfully demonstrated in a variety of projects (e,g, K4 mikro kernel, Xen- virtualisation).

Further activities:

• ITS Annual Meeting

escrypt presents two articles at the ITS Annual Meeting in National Harbor, MD, June 1-3. The first presentation will describe the current state of security and privacy in vehicular networks, and it will present approaches to overcome current hurdles. The second presentation will give an overview of security issues that will arise with the deployment of electric vehicles. To our best knowledge, escrypt is the first to approach security issues for electric vehicles. Further information can be found at the workshop's webpage.

• Cryptography and Embedded Security workshop@Embedded World Conference 2009

escrypt presented in cooperation with Design&Electronik again the "Cryptography and Embedded Security Workshop" on 5th March 2009.

At the booked out workshop, the numerous participants were listening praxis orientated talks presented by the experts from different areas of embedded security with great interests. The presentations were followed by lively discussions between the participants and the speakers.

The praxis orientated talks presented topics such as Standard Solutions for Embedded Security, Applied Side Channel Analysis, Future Mobile Device Security, IP Protection using Dongles, RFID Security, FPGAs for secure environments, TPM in Embedded Applications, Trusted Computing for Embedded Devices. Please find further information concerning the workshop here.

• Embedded Systems Conference Silicon Valley 2009

escrypt gives a workshop about the challenges and opportunities of embedded security at ESC SV 2009 in San Jose, March 30th - April 3rd.

• SAE 2009 World Congress

escrypt presents three papers at the SAE 2009 World Congress in Detroit, April 20-23, 2009. The papers cover an introduction to vehicular embedded security as well as secure feature activation and secure software flashing. Please find additional information concerning this World Congress at this web page.

• VANET 2009

escrypt will be the General Co-Chair for the ACM VANET 2009 workshop held in Bejing in fall of 2009. VANET is held in conjunction with ACM MobiCom 2009 and brings together recent advances in the development of vehicular inter-networking (VANET) technologies.

We are looking forward to your remarks and comments:
E-mail: twollinger@escrypt.com

If you wish to give your colleagues the potential to obtain the newsletter, please inform us by email info@escrypt.com.

More information can be accessed any time on www.escrypt.com.

If you wish to unsubscribe from this mailing list, please click here.