Masana Murase’s research while affiliated with Keio University and other places

A Trusted Computing Base (TCB) such as a Trusted Platform Module (TPM) or a Mobile Trusted Module plays anessential role for security and privacy applications in embedded systems such as cell phones, smart sensors, and actuators. However, existing hardware-based TCBs lack flexibility for function updates, bug fixes, and feature updates. In this paper, we present a dependable TCB on a Cell Broadband Engine TM processor by providing a hardware and software hybrid TPM. Unlike prior approaches, we provide three new features: (1) TPM functions are implemented in software running in memory isolated by hardware, (2) our software TPM is launched and establishes a chain of trust from the hardware using a secure boot method, and (3) anew TPM command provides dynamic patching to the running software TPM and secure code overlays for the efficient use of the limited resources. We show the feasibility of this hybrid implementation of the TPM by assessing its performance and security properties.

Abstract, This paper proposes "Zero-stop Authentication" model and system, which realizes automatic, real-time authen-tication in the physical world. Applications in the physical environment such as those at library gates and supermarket counters could benefit from automatic authentication of users. These applications need to detect users using embedded sensors, and authenticate them, and bind objects to them, in real-time. To accomplish such real-time user authentication, model of user mobility, and methods to bind objects to users are required. This paper models and formulates the user mobility and time constraints, and proposes three techniques to correctly bind objects to users. A Zero-stop Authentication System built based on this model is also proposed, which automatically detects and authenticates users, and relates objects to them. The feasibility of real-time authentication is estimated using the model, and error is issued if the check fails. We also describe prototype implementation of the system, and two applications. Secure Library System uses ZSAS to authenticate users at library exits,

We propose a Zero-stop Authentication model, which models the process of actively authenticating users in an environment populated with various mobile and embedded devices. In such an environment, since users are mobile, an authentication mechanism that does not disturb the user movement, and that decreases the user burden is needed. The model determines the timing constraint needed to realize “zero-stop” property from the speed of the users, size of the sensing area, and the overhead of sensing and authentication process. We also present a Zerostop Authentication system to realize the model, and demonstrate the prototype implementation.

This paper proposes “Zero-stop Authentication” system, which requires no intentional interactions between users and authentication applications. Our Zero-stop Authentication model simplifies the current complicated authentication process by automating detection of users and objects. Our challenge is to eliminate the necessity for users to wait for a moment to be authenticated without reducing security level of authentication. To accomplish such real time user authentication in a physical environment, user mobility needs to be modelled. This paper models and formulates the user mobility and time constraints as “1/N × 1/M model”, considering user speed, sensor coverage areas, communication time between the sensors and the server, and processing time consumed by an authentication process. We also prototyped a library application based on 1/N × 1/M model, and installed it into Smart Furniture [1] which is an experimental platform to examine feasibility of our model.

It is important for application programmers and users to easily control networked appliances and devices without the need to be aware of their locations. In particular, network transparent control is essential for the ubiquitous computing environment. This is because end-users accomplish their tasks by coordinating devices that they are wearing, such as wearable computers and cellular phones, with various networked appliances, such as display devices and loud speakers. This paper presents the Wapplet framework, a new application framework that addresses this issue for the ubiquitous computing environment. To show the efficiency of the proposed Wapplet framework, we have evaluated it in terms of processing time