IBM®
Skip to main content
    United States change      Terms of use
 
 
Select a scope:    
     Home      Products      Services & industry solutions      Support & downloads      My account     
alphaWorks  >  Java technology  >  

IBM Direct Anonymous Attestation Tools

A test suite that verifies the Direct Anonymous Attestation (DAA) commands of the Trusted Platform Module (TPM) 1.2 specified by the Trusted Computing Group (TCG).


Date Posted: December 6, 2005
OverviewRequirements Download FAQs Forum Reviews

What are IBM Direct Anonymous Attestation Tools?

The IBM Direct Anonymous Attestation (DAA) Tools were realized by IBM Research who jointly developed and specified the Direct Anonymous Attestation (DAA) Protocols with the Trusted Computing Group (TCG). DAA allows users to convince a verifier that they use a platform that has embedded a certified hardware module. The protocol protects users' privacy: If a user talks to the same verifier twice, the verifier is not able to tell whether or not communication is with the same user as before or with a different one. The tools implement the DAA functions of the TCG Software Stack (TCG) and provide test cases that verify the DAA commands of a Trusted Platform Module (TPM) 1.2.

How does it work?

This release provides a stand-alone tool for verifying the DAA commands of a TPM 1.2 implementation. The tool verifies whether or not a TPM follows the DAA protocol. Thereby, it verifies whether the involved parties of a DAA protocol (TSS of the platform, the DAA Issuer, and the DAA Verifier) accept the output returned by the TPM. The tests are conducted with different protocol parameters, such as different DAA Issuer keys, different base names of both DAA Issuer and DAA Verifier, different signature input (message and generated AIK), and different DAA counters. Furthermore, the save/load context commands of the TPM are tested in combination with DAA commands. Apart form the normal behavior, over 160 error cases of the DAA commands are verified by triggering its TPM error codes. The data exchange between the TPM and the tool can be realized either via socket communications or via a simple Java™ TPM interface.


Success story

Infineon cooperated with the IBM Zurich Research Laboratory to validate the accuracy of Infineon's DAA Implementation. Infineon was the first TPM supplier to use the DAA test suite developed by IBM as a test environment, consisting of TPM Simulator, TSS, and TCG application. The intensive cooperation during the testing of Infineon's DAA implementation also affected the further optimization of IBM's DAA test environment. The result of the test phase, which was executed in only six weeks, is an error-free DAA implementation by Infineon.

About the technology author(s):

Roger Zimmermann joined the IBM Zurich Research Laboratory in 2003, working on projects in the area of cryptography, privacy, and trusted computing. He is an active member of working groups of the Trusted Computing Group, with which he jointly standardized the Direct Anonymous Attestation (DAA) protocols. Mr. Zimmermann received an M.S. degree in computer science from ETH (Swiss Federal Institute of Technology) in Zürich, Switzerland.
View screenshots:
Successful execution of a provided (Junit) test case. The tested TPM passed all tests.

Download now Download now

Related technologies

For platform(s):
Java

For topics:
analysis, authentication, testing


 

    About IBM      Privacy      Contact