By Topic

A Trusted Integrity Measurement Architecture for Securing Enterprise Network

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

2 Author(s)
Tong Liu ; Dept. of Electr. & Comput. Eng., Auburn Univ., Auburn, AL, USA ; Agrawal, P.

The threat landscape continues to evolve, with increasingly complex attacks directed at the corporate network to achieve malicious goals. Enterprise networks build their first line of defense with firewalls and virtual private network (VPN) gateways. However, this kind of defense can be easily circumvented. It is possible that an attacker may have compromised a client process and gain privilege of the client computer. Even though we have corporate-wide access control, the access control approach is currently insufficient to stop these malicious processes. To better defend enterprise network, this paper proposed a novel system that empowers the corporate networks to verify client integrity properties based on our trusted measurement architecture. When the critical system configuration is changed, the trusted platform module (TPM) attestation mechanism is called to inform security agent about the trusted measurement values. Once the verification process fails, the client will be excluded from the network and notification to a super security agent will be sent. The system performance is also illustrated in this paper.

Published in:

Trust, Security and Privacy in Computing and Communications (TrustCom), 2011 IEEE 10th International Conference on

Date of Conference:

16-18 Nov. 2011