CUREX

Part of EU Open Research Repository
Published December 24, 2020 | Version v1
Conference paper Open

ICITPM: Integrity Validation of Software in Iterative Continuous Integration Through the Use of Trusted Platform Module (TPM)

Authors/Creators

  • 1. Computer Science Department, University of Malaga Campus de Teatinos s/n, Malaga, Spain
  • 2. Neurosoft S.A. Athens Greece
  • 3. Department of Digital Systems, University of Piraeus, Piraeus, Greece

Description

Software development has passed from being rigid and not very flexible, to be automated with constant changes. This happens due to the creation of continuous integration and delivery environments. Nevertheless, developers often rely on such environments due to the large number of amenities they offer. They focus on authentication only, without taking into consideration other aspects of security such as the integrity of the source code and of the compiled binaries. The source code of a software project must not be maliciously modified. Notwithstanding, there is no safe method to verify that its integrity has not been violated. Trusted computing technology, in particular, the Trusted Platform Module (TPM) can be used to implement that secure method.

Files

ICITPM_Sealedgrid.pdf

Files (550.8 kB)

Name Size Download all
md5:84955597d3ac751833e6c21312c971cd
550.8 kB Preview Download

Additional details

Funding

European Commission
CUREX - seCUre and pRivate hEalth data eXchange 826404
European Commission
SealedGRID - Scalable, trustEd, and interoperAble pLatform for sEcureD smart GRID 777996