TCGの組込みシステム・IoTへの取り組み およびTCG参加メリット December 2015 Version (1 December 2015) 3:46:47 PM © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 1 TCG/TCGストラテジーについて December 2015 Version (1 December 2015) 3:46:47 PM © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 2 TCG/TCGストラテジー TCGについて/会員募集: TCG Webのファクトシークをご参照ください http://www.trustedcomputinggroup.org/jp/jrf_in_tcg http://www.trustedcomputinggroup.org/files/temp/93FD50BC-1A4B-B294-D0332BEF24B54E44/TCG%20JRF%20Fact%20Sheet.pdf 2020年に向けてのTCGのビジョン 「小さな機器から大規模ITシステムまで、そして従来のIT機器から現場や 日常生活をリッチにする無数のデバイスに至るまで、信頼でき安心・安全 な基盤にはTCG技術を採用した国際標準が必須になります!」 TCGストラテジー 3つの柱 1. テクノロジー・イノベーション 2. 世界規模での展開 3. コミュニティの育成 © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 3 TCG ストラテジー 1. テクノロジー・イノベーション • 組込みシステムへの展開 (車載、IoT、ネットワーク) • プラットフォームの拡大 (PC、サーバー、モバイル、クラウド、インフラ) • 各種インダストリーへの展開 (金融・医療) • インターフェースの簡素化 2. 国際規模での展開 • SDK/インターフェイスの展開 • 認証の推進 • 大規模展開をサポートする標準化 • 様々な暗号のサポート • ISO化されたTPMの健全な維持 3. コミュニティの育成 • TCGメンバー募集 • いろいろな組織へのTCG技術の展開 • 他の国際標準化団体へのリエゾンの派遣 • いろいろな重要な団体との協業 © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 4 1.a) IoT に関する取り組み • TPMのIoTデバイスでの有効性の一例 TPMによる機器認証と健全性の検証可能性 応用例 • • 実働しているIoTデバイスのリモートでの定期点検 サイバー攻撃が懸念されるエリアでのIoT機器の「信頼」性向上 • TCGの取り組み 最近の公開技術情報(2013-2015) • IoT関連情報を公開しています。詳細はWebで。 “TCG Guidance for Security IoT” 技術部会での活動 • • • • TCG技術を使ったIoTシステムのデモ作成 “TCG Guidance for Securing IoT”の推進 ソフトウェア・ファームウェアのセキュアなアップデート技術の開発 リソース制約がある様々なIoT機器の実装ガイドの作成 © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 5 1.b) 車載に関する取り組み • TPM仕様をベースに、車載組み込みシステムで要求される仕様の 制定 仕様策定での最初のユースケース(今後拡張予定) • ソフトウェアのインストール・更新, リモート・サービス, テレマティク ス・サービス 対象としている機能 • • Attestation (認証), 過酷な環境での信頼性, 柔軟な暗号鍵管理 TCGの取り組み 最近の公開技術情報(2013-2015) • IoT関連情報を公開しています。詳細はWebで。 技術部会での活動 • • “TPM2.0 Library Profile for Automotive-Thin”のプロテクション・プ ロファイルの定義 “Library profile for Automotive-Thin” / “for Automotive-Rich” を サポートしたTSS(Software Stack)の定義 © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 6 1.c) ネットワーク機器に関する取り組み • ネットワーク機器へTCG技術の応用を検討中 ルーター、スイッチ、ワイヤレス・アクセスポイント、ポート増強機器、ファイヤーウォールなど 要求仕様と実際とのギャップの検証からスタート • • 実ネットワーク機能 バーチャル・ネットワークの機能 (下記を含む) – – • SDN: Software-defined Networking NFV: Network Functions Virtualization TCGの取り組み A. “A Networking equipment protection guidance” • TCGや他の団体が制定しているガイドを参照しながら、いかにネットワーク機器を守るかを総合的に 記述しているガイド。実際と要求とのギャップに関しては、必要な仕様を今後策定する。 B. 今後の予定 • • • ネットワーク機器用のTPMでのPCR (Platform Configuration Register)の使い方の定義 ネットワーク機器用で最小限必要なTPM2.0仕様の定義 現在のネットワーク環境でのTPMを利用したリモートの機器認証の方法の定義 © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 7 TCG’s Embedded System and IoT Focus and the Value of TCG Membership December 2015 Version (1 December 2015) 3:46:47 PM © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 8 The Trusted Computing Group December 2015 Version (1 December 2015) 3:46:47 PM © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 9 Who is TCG? : Mission The Trusted Computing Group (TCG) is a not-for-profit organization formed to develop, define and promote open vendor-neutral, global industry standards, supportive of a hardware-based root of trust, for interoperable trusted computing platforms. © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 10 Who is TCG? • The TCG membership develops technical specifications. The Trusted Computing Group (TCG) is an international industry standards group focused on Trusted Computing since its founding in 2003. – Specifications are published when completed, and free to access. • TCG publicizes the specifications and references member implementations as examples of use. © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 11 Board of Directors Marketing Work Group Public Relations Events Marketing Support Technical Committee Embedded Systems Mobile Platform PC Client Security Evaluation Storage (2015 August) Certification Japan Program Regional Committee Forum Infrastructure Server Trusted Computing Group Organization Structure Solutions Work Groups Trusted Network Communications (TNC) Trusted Platform Module (TPM) TCG Software Stack (TSS) Virtualized Platform Greater China Regional Forum Admin Trusted Mobility Solutions Trusted Multi-tenant Infrastructure Compliance Internet of Things Vehicle Services (Automotive) Network Equipment Key Blue Box: Teal Box: Black Box: Chairs Appointed by Board Chairs Nominated by WG, Appointed by Board Resources Contracted by TCG Root of Trust for Measurement © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 12 Board of Directors Marketing Work Group Public Relations Events Marketing Support Technical Committee Embedded Systems Mobile Platform PC Client Security Evaluation Storage (2015 August) Certification Japan Program Regional Committee Forum Infrastructure Server Trusted Computing Group Organization Structure Solutions Work Groups Trusted Network Communications (TNC) Admin Trusted Mobility Solutions Trusted Multi-tenant Infrastructure Compliance Internet of Things Trusted Platform Module (TPM) Vehicle Services (Automotive) TCG Software Stack (TSS) Network Equipment Virtualized Platform Greater China Regional Forum Focus for Today: Embedded System and IoT Root of Trust for Measurement © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 13 TCG: Membership Total Membership including Commercial, Liaison, Invited Experts and Government participants: 100+ MEMBER ORGANIZATIONS Adopters: Contributors: Promoters: Current Membership List Available: http://www.trustedcomputinggroup.org/ about_tcg/tcg_members © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 14 Trusted Computing Group Strategy © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 15 TCG Vision for 2020 “TCG Enabled” internationally standardized technology is globally accepted and expected as the foundation for trust in systems ranging from the most complex large-scale computing platforms to small scale dedicated devices, from traditional IT to the factory floor to the myriad devices which enrich our daily lives © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 16 2015/’16 TCG Strategy: 3 Pillars • Technology Innovation • Global Adoption • Community Development © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 17 Technology Innovation Anticipating and Responding to… Emerging Threats Emerging Technologies Emerging Market Segments Drive new areas of Standardization – Embedded Systems Verticals • Automotive • Internet of Things • Network Equipment/SDN – Computing Platform Resiliency • Critical Infrastructure • Cloud • PC/Server/Mobile – Application & Industry Verticals (e.g. Financial, Healthcare) – Simplification for Ease of Use/Adoption © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 18 Global Adoption Focus on Foundations Enabling… Global Flexibility Development & Use • Promote TCG-enabling Interfaces/SDKs • Encourage Certification as necessary • Develop Standard Methods for Mass Provisioning • Crypto Agility for Application-Specific Crypto needs (& address other global requirements) • Maintenance of the TPM specification as an ISO/IEC publication (through the JTC 1 Publicly Available Specification Submission Process) © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 19 Community Development Broaden TCG’s Impact and Engage Other Communities • Membership /Development Recruitment – Improve & Clarify Membership Value Proposition – Improve TCG Organization Efficiency – Enable member effectiveness and improve satisfaction – Add members in “Innovation” areas • Global Community Outreach – Public and Private Sector • Liaisons w/other Standards (Global) – Leverage & Multiply our efforts • Participation in/with key development communities including verticals © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 20 TCG’s Embedded System and IoT Focus December 2015 Version (1 December 2015) 3:46:47 PM © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 21 Internet of Things Purpose & Scope Show value of Trusted Computing for IoT including providing capabilities to IoT Devices for establishing device identity and device integrity: • Use security hardware to protect unique device identity • Compare firmware and hardware integrity information to expected state for establishing trust (in conjunction with identity) Enabling: • Audit of IoT device deployments via identity and vetted software inventory • Improvement in IoT device trustworthiness in a connected environment where remote software based attacks are expected © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 22 Internet of Things Recent Publications/Resources A. B. C. D. TCG: Guidance for Securing IOT Using TCG Technology (14Sept2015) TCG: Architect’s Guide: IOT Security (July2015) TCG: Architect’s Guide: Industrial Control Systems (ICS) Security Using TNC Technology (Oct2013) TCG: Architect’s Guide: Cybersecurity (Oct2013) © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 23 Internet of Things Guidance for Securing IOT Using TCG Technology • • • • • • • • • • Establish and Protect Device Identity Protect Against Malware Infection Protect Against Hardware Tampering Protect Data at Rest Consider Device Resale or Decommissioning Use Cryptographic Protocols Consider Provisioning Protect Audit Logs Support Remote Manageability Accommodate Legacy Hardware © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 24 Internet of Things Workgroup Projects Snapshot A. B. C. D. Create Demos of IoT Use Cases benefited by Trusted Computing (for U.S. RSA Conference ‘16) Promote the use of the “TCG Guidance for Securing IoT” Document Develop Secure Software and Firmware Update process for IoT devices Create Implementation Guidance for different classes of IoT Devices (such as limited resource devices, etc.) Contact for more information: [email protected] © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 25 Vehicle Services (Automotive) Purpose & Scope Develop the necessary Trusted Computing specifications to support an integrated framework for a wide range of embedded computing applications for Vehicle Architectures. Scope: Automotive (also Avionics/Maritime) Capability Considerations: Initial Use Cases: – Software Updating/Installation – Remote Services – Telematics Services – Attestation – Severe Environment Reliability – Flexible (Crypto) Key Mgmt. © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 26 Vehicle Services (Automotive) Recent Publications/Resource A. TCG: TCG TPM 2.0 Automotive Thin Profile (16March2015) B. TCG: FAQ Trusted Computing Group and Automotive Security (19March2015) C. TCG: Securing Auto Data: A Demonstration of a Secure Remote Firmware Update with a Trust Platform Module (TPM) for the Vehicle ECU (April2015) D. TCG: Secure Embedded Platforms with Trusted Computing: Automotive and Other Systems in the Internet of Things Must Be Protected (June2012) © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 27 Vehicle Services (Automotive) Workgroup Projects Snapshot A. Complete a Protection Profile of TPM 2.0 Library Profile for Automotive-Thin. This Library Profile is currently published at version v1.0. (Schedule: 3/2016) B. Create a companion TSS (Software Stack) standard of Library Profiles for Automotive-Thin and for Automotive-Rich. Contacts for more information: [email protected] © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 28 Network Equipment Purpose and Scope Apply Trusted Computing benefits to secure network equipment such as routers, switches, wireless access points, port extenders, firewalls, etc. Identify any gaps needing further development. Develop detailed recommendations while considering: • Physical network functions • Virtual network functions – Including software-based services • Software-defined Networking (SDN) • Network functions virtualization (NFV) © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 29 Network Equipment Workgroup Projects Snapshot A. Develop a networking equipment protection guidance document. This is a comprehensive document describing what can or must be done to protect networking equipment and providing references to TCG or other industry guidance where available. Where gaps are discovered, create specifications to close those gaps for networking. B. Potential follow-up documents/specifications include the following: 1. 2. 3. Platform Configuration Register (PCR) usage (which may evolve to networking equipment platform specifications) TPM 2.0 minimum profile for network equipment TPM-based attestation and remote attestation integration (into the existing environment) Contacts for more information: [email protected] © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 30 Trusted Computing Group Membership © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 31 TCG Membership Levels/Value Proposition Available Levels of Membership** – Contributor: Highest Value/All Benefits** $15,000/year – Associate: Solution Workgroups $10,000/year – Adopter:* RAND Obligation & Compliance Program Value $7,500/year *Small Adopter level available for entities of less than 100 employees **Note: Promoter Membership level with Director privileges by Board invitation only © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 32 Recommended: Contributor Level Membership Contribute to Specs & Vote to ensure your needs are met © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 33 Recommended: Contributor Level Membership Early Specification Access enabling… …Leadership Product Vote to ensure your Development needs are met © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 34 Recommended: Contributor Level Membership Full Community Participation (incl. Japan/China Regional Forums) Vote to ensure your needs are met & Maximized Learning via Workgroups and Solutions Teams © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 35 Recommended: Contributor Level Membership Demonstrate Thought Leadership to Customers… …Assume TCG Vote to ensure your Leadership Roles needs are met © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 36 Baseline Benefits (all membership levels): – RAND Licensing Benefits/ Obligation from/to Members – Participation in Marketing Programs (such as RSA), PR and events – Compliance/Certification Program Participation © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 37 Marketing Program Benefits • TCG technology product demos at Tradeshows • Press Release Participation • PR and Media Opportunities • Speaking Opportunities © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 38 Contributor Benefits Recap: • Contribute to Specs and Vote to ensure your needs are met • Early Access to Specs for product work • Full Community Participation and Maximized Learning Opportunities (including Greater China and Japan Regional Forums) • Demonstrate Thought Leadership to your Customers (including access to formal TCG Workgroup leadership roles) © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 39 TCG Membership Benefits At-a-Glance (for Workgroups) RAND Licensing Benefits/ RAND Licensing Benefits/ RAND Licensing Benefits/ Obligation from/to All Members Obligation from/to All Members Obligation from/to All Members Via Workgroups © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 40 Associate Benefits • Significant Baseline Benefits with: – Partial Community & Meeting Participation • Currently for Cloud and Mobile Solutions (Additional Solutions Groups expected) • Plenary Sessions General Meeting Participation Adopter Benefits • Significant Baseline Benefits with: – Meeting Participation (Limited to Plenary Sessions) © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 41 mailto: [email protected] © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 42 http://www.trustedcomputinggroup.org/join_now © 2 0 1 5 Tr ust e d C o m p ut i ng G r o up 43
© Copyright 2024 ExpyDoc
