Posted on

UBITECH Unveils UBITrust v1.0: A Cutting-Edge Attestation Library for Enhanced Hardware Security for All Roots-of-Trust

UBITECH is thrilled to announce the release of UBITrust v1.0, an innovative attestation library designed to support all roots-of-trust. This major release will be officially launched at a special TPMdev community event on Wednesday, December 11, 2024, held online for developers and security enthusiasts worldwide. UBITrust v1.0 offers a comprehensive suite of features tailored to bolster hardware-based security across various applications:

Attestation Key Management. Self-Generated Attestation Keys: Creation of attestation keys bound to verified key usage restriction policies, ensuring secure construction of on-premise attestation assertions; Migratable Keys Support: Facilitates flexibility while maintaining stringent security through policy-restricted migratable keys.

Credential Management. MakeCredential and ActivateCredential Operations: Ensures full compatibility with TPM specifications, streamlining credential operations.

Cryptographic Functionality. Hashing Algorithms: Guarantees secure data integrity. HMACs (Hash-Based Message Authentication Codes): Provides robust message authentication. Symmetric Encryption (AES-128): Supports both 16-byte and 32-byte keys for versatile encryption needs. Asymmetric Encryption (RSA): Facilitates secure key exchange and data protection. Key Derivation Function (KDF): Generates strong cryptographic keys. Trusted Random Number Generator (RNG): Ensures high-entropy randomness for cryptographic operations.

Digital Signatures. ECDSA Implementation: Delivers secure and standards-compliant signing operations.

Policy Management. Multiple Policy Sessions: Supports up to four active policy sessions simultaneously. PolicySigned Implementation: Protects against replay attacks and adheres strictly to TPM specifications.

Developed by Stefanos Vasileiadis (Technology Leader), Nikolaos Varvitsiotis, and Chronis Sapountzakis from the Digital Security & Trusted Computing Research Group at UBITECH, under the leadership of Dr. Thanassis Giannetsos, UBITrust is set to become an indispensable tool for developers seeking to integrate robust security measures into their applications and devices. Demonstrating UBITECH’s commitment to the community, UBITrust v1.0 will be released freely under an IP-protected license.

Dr. Thanassis Giannetsos, Head of the Digital Security & Trusted Computing Research Group at UBITECH, stated, “UBITrust represents our dedication to advancing hardware-based security solutions. By providing an one-fits-all attestation library, we empower developers to implement secure, trustworthy systems with ease.”

TPMdev, a vibrant community of over 750 developers passionate about hardware security, will host the launch event. Founded by Dimi Tomov, TPMdev serves as an independent platform for security discussions, collaboration, and the sharing of knowledge and resources. The community aims to elevate the adoption of state-of-the-art security technologies, including TPM 2.0 and other Hardware Security Modules (HSMs), facilitating the secure verification of cloud servers and the protection of IoT and Edge device configurations.