Wave Systems Corp. (fka WAVXQ)

[waveduke]

Awk, RE AMD's LaGrande equivalent,
I believe it's called SEM. A few snippets from a Strongin presentation:

Addressing the problems of Privacy, Security and Third Party Trust requires changing the PC
Changes to both hardware and the OS are needed
AMD has collaborated with Microsoft to evolve the PC platform
The results of this collaboration
AMD’s Secure Execution Mode (SEM) Platform (hardware)
Microsoft’s NGSCB (OS)

Goals of the effort
Raise the bar for PCs by addressing the trust related issues
Minimize the system cost impact
Preserve the billions of dollars in investment made by IHVs and ISVs
Provide strong privacy protections while increasing security
Enable new uses for the PC and new revenue streams for OEMs

Threat model
GOAL: Maximum value at lowest cost
Protect against all software attacks
Protect against “low cost” or “easy” hardware attacks
Protect against attacks using readily available plug-in devices
A particular certification level is not targeted

AMD SEM Architecture
4 New Platform Capabilities
Protected Execution Space
Storage Sealing
Secure Initialization
Remote Attestation

Microprocessor changes
Core Architecture
Establishes the Memory Partition
Secure initialization
Solves the “chicken and egg” problem
Miscellaneous Features
Addresses attacks

Remote Attestation
“How can a remote party verify that I have a trustworthy system?”

Spoof-proof solutions are complex
Our solution depends on platform unique credentials and cryptography
Unique credentials pose a privacy risk
Secure protocols to share credentials are needed

Key Principles
Platform owner is always in control – decides
If platform identity is enabled
Who is allowed to receive identity
Owner may or may not authorize proxy
Indirect Attestation via Trust Service Providers (TSP)

A call to action
A stand-alone PC is good but limited
A networked PC is much more useful
The same is true for trustworthy PCs
The industry needs to develop the Open Trust Infrastructure to
Provide “low-friction”Trust Services
Provide superior privacy protections
Provide tools for content distribution and e-commerce to trustworthy end-points

TPM Vendors
Get started now on designs for various markets – think about value add
Chipset Vendors
Incorporate support for trustworthy computing into components ASAP
OEMs
Develop your strategy for deployment
Commerce relationships can make trustworthy PCs into revenue generators