TCG and IETF further cement interoperability in attestation with long-term partnership

ID: 1554386
recent pressrelease next pressrelease

(businesspress24) - Beaverton, OR, USA, December 2, 2019

Through their ongoing work on the definition and architecture of how attestation works, TCG and the IETF are enabling higher levels of security within the operating systems of mobile devices and tablets. Working together, the two global standards organizations are defining a structure for the assurances that are input into application codes and setting specific rules so that they can be interpreted and ran interchangeably and interoperably

This is to address challenges within the current infrastructure which was built with a premium on openness and interoperability. While this has paid huge dividends in terms of creativity and innovation, the same openness is problematic for security with evidence showing that the access control model of some operating systems is inadequate against many types of attacks w security works.


In a tightly managed operating system, the applications that are available to download entail specific attestation that has been approved by the device manufacturer. The device then checks the digital signature and makes sure everything is correct before it installs the code

When an operating system has ties to the application and is not tightly managed, catastrophic consequences can occur as the applications have the ability to get down to the main operating system level where it is open to exploitation and numerous security problems.

In order to ensure the highest levels of security, whether the device contains a tightly managed operating system or not, device manufacturers need to consider the attestation in their connected devices. With the introduction of one set of standards, the industry is able to guarantee higher levels of assurance and ownership and ensure that there is more accountability when a problem occurs ication is responsible to sign the code, the manufacturer is providing an assurance that they believe that the code is secure, if a vulnerability is then found, they are ultimately responsible for removing the issue and updating or patching the application.



Vendors worldwide, both members of TCG and participants in the IETF, have been collaborating on the development of attestation standards and technologies to ensure the capability with a variety of use cases.


Moriarty recently highlighted the developments of the partnership between TCG and the IETF at the TCG October Annual Members Meeting in Toronto, Ontario, Canada. In her keynote presentation entitled



More information:
http://https://www.realwire.com/releases/TCG-and-IETF-further-cement-interoperability-in-attestation



Keywords (optional):

trusted-computing-group, tcg, internet-engineering-task-force, ietf, attestation,



Company information / Profile:

PressRelease by

Requests:



PressContact / Agency:

Proactive PR
+44 (0)1636 704 888
Email: press(at)trustedcomputinggroup.org



published by: RealWire
print pressrelease  send to a friend  

Date: 12/02/2019 - 12:06
Language: English
News-ID 1554386
Character count: 5172
Kontakt-Informationen:
Firma: RealWire
Ansprechpartner: Fran Cator Feedback to businesspress24.com about Pressrelease-id:
Stadt: Lincoln
Telefon: +44 (0)1522 883640

Meldungsart: please
Versandart: send
Freigabedatum:
Comments:



Number of hits: 134

Linking-Tips:



Direct Link to this PressRelease:






We would appreciate a link in your News-, Press- or Partner-Site.

Comments on this PressRelease






All members: 9 432
Register today: 0
Register yesterday: 0
Members online: 0
Guests online: 58


Don't have an account yet? You can create one. As registered user you have some advantages like theme manager, comments configuration and post comments with your name.