trusted computing

Trusted computing is a broad term that refers to technologies and proposals for resolving computer security problems through hardware enhancements and associated software modifications. Several major hardware manufacturers and software vendors, collectively known as the Trusted Computing Group (TCG), are cooperating in this venture and have come up with specific plans. The TCG develops and promotes specifications for the protection of computer resources from threats posed by malicious entities without infringing on the rights of end users.

Microsoft defines trusted computing by breaking it down into four technologies, all of which require the use of new or improved hardware at the personal computer (PC) level:

• Memory curtaining -- prevents programs from inappropriately reading from or writing to each other's memory.
• Secure input/output (I/O) -- addresses threats from spyware such as keyloggers and programs that capture the contents of a display.
• Sealed storage -- allows computers to securely store encryption keys and other critical data.
• Remote attestation -- detects unauthorized changes to software by generating encrypted certificates for all applications on a PC.

In order to be effective, these measures must be supported by advances and refinements in the software and operating systems (OSs) that PCs use.

Within the larger realm of trusted computing, the trusted computing base (TCB) encompasses everything in a computing system that provides a secure environment. This includes the OS and its standard security mechanisms, computer hardware, physical locations, network resources and prescribed procedures.

The term trusted PC refers to the industry ideal of a PC with built-in security mechanisms that place minimal reliance on the end user to keep the machine and its peripheral devices secure. The intent is that, once effective mechanisms are built into hardware, computer security will be less dependent on the vigilance of individual users and network administrators than it has historically been. Concerns have arisen, however, about possible loss of user privacy and autonomy as a result of such changes.

Learn more about Windows Security: Alerts, Updates and Best Practices

Do you have something to add to this definition? Let us know. Send your comments to techterms@whatis.com

More resources from around the web: - The Electronic Frontier Foundation discusses the promise and risk of trusted computing. - Shane Rau outlines requirements, benefits and market trends relevant to trusted computing. - Roger L. Kay explains how trusted computing can be implemented. - Information about the status of trusted computing can be found at the Trusted Computing Group Web site.

FILE EXTENSION AND FILE FORMAT LIST File Extension and File Format List: A B C D E F G H I J K L M N O P Q R S T U V W X Y Z #

RELATED CONTENT Microsoft to address 12 vulnerabilities, IE display zero-day A Patch Tuesday bulletin is expected to address an Internet Explorer display error that could be targeted by attackers using a publicly available... Exploit code targets Internet Explorer zero-day display flaw Exploit code is publically available targeting an Internet Explorer cascading style sheet (CSS) handling error, according to Symantec. Windows 7 DoS flaw allows hackers to freeze Microsoft's newest OS A Server Message Block (SMB) flaw in Microsoft's latest OS can be remotely exploited by an attacker to cause Windows 7 machines to stop responding.

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary BotHunter  (SearchSecurity.com) BotHunter is a type of bot application that looks for other bots by tracking two-way communication flows between active software inside a private... principle of least privilege (POLP)  (SearchSecurity.com) The principle of least privilege (POLP) is the practice of limiting access to the minimal level that will allow normal functioning. Applied to...