Overview of workpackage 8 - Click to enlarge

Mobile phone embedded controller, integrated TPM and market requirements

An embedded hardware platform will be prepared and made ready for Trusted Computing. A useable embedded controller is a prerequisite for this (a one chip mobile phone controller will be used). Internal security procedures will be implemented to protect against hardware and logical attacks and using the results in the TCG as a best practice for embedded controllers. The next step will analyse markets, user, mobile phone provider and mobile phone standard requirements (with regard to trust and security). The dependability requirements for a mobile and trusted secure mobile platform will be defined and planning, discussing and specifying the issues will follow to define the minimum needs for next generation trusted platforms.

Adapting and implementing Trusted OS for embedded controllers

Trusted mobile operating system (Trusted OS) will be specified and a prototype based on the S-GOLD3 baseband controller manufactured by IFX will be implemented. Similarly, basic Trusted OS functionalities that are both lightweight and secure enough to build a reliable basis of the selected mobile applications will be first specified and then implemented. Real time performance of the trusted OS will be analysed and optimised to make the complete system useful for its target applications.

Trust and security profiles for application structures

Determining the security and policy requirements for trusted computing for a mobile platform based on an analysis of the requirements of key applications is the first key issue. This analysis will be used in defining a minimum set of TPM functionalities to support the key applications. The level of security provided by an implementation of trusted computing on an embedded platform will be analysed and, if necessary, possible security enhancements will be proposed.