On Line Secure Elements: Deploying High Security Keystores and Personal HSMs

Pascal Urien

doi:10.1109/ICNC57223.2023.10074066

On Line Secure Elements: Deploying High Security Keystores and Personal HSMs

Pascal Urien

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

This paper presents innovative approach to deploy secure elements providing cryptographic resources in TCP/IP environment. The main idea is to execute in secure element, TLS1.3 server, secured by 256 bits pre-shared-key. All cryptographic resources are protected by TLS-PSK sessions. In the user plane the secure element is a TLS server, what enables to define uniform resource identifier (URI) for embedded resources. The user is optionally equipped with access card (TLS identity module) that stores procedures working with PSK. The security level may be increased by the use of dedicated terminal, similar to payment terminal, which protects dual factor authentication. We present two open platforms: keystore devices hosting preconfigured TLS-SE secure elements, and personal HSM supporting on-demand TLS-SE applications. Finally we detail some performance elements.

Original language	English
Title of host publication	2023 International Conference on Computing, Networking and Communications, ICNC 2023
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	450-455
Number of pages	6
ISBN (Electronic)	9781665457194
DOIs	https://doi.org/10.1109/ICNC57223.2023.10074066
Publication status	Published - 1 Jan 2023
Event	2023 International Conference on Computing, Networking and Communications, ICNC 2023 - Honolulu, United States Duration: 20 Feb 2023 → 22 Feb 2023

Publication series

Name	2023 International Conference on Computing, Networking and Communications, ICNC 2023

Conference

Conference	2023 International Conference on Computing, Networking and Communications, ICNC 2023
Country/Territory	United States
City	Honolulu
Period	20/02/23 → 22/02/23

Keywords

IOSE
Secure Element
Security
TLS

Access to Document

10.1109/ICNC57223.2023.10074066

Cite this

Urien, P. (2023). On Line Secure Elements: Deploying High Security Keystores and Personal HSMs. In 2023 International Conference on Computing, Networking and Communications, ICNC 2023 (pp. 450-455). (2023 International Conference on Computing, Networking and Communications, ICNC 2023). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ICNC57223.2023.10074066

@inproceedings{b6d45b7e8bf44f0b8f7146fc736b7b79,

title = "On Line Secure Elements: Deploying High Security Keystores and Personal HSMs",

abstract = "This paper presents innovative approach to deploy secure elements providing cryptographic resources in TCP/IP environment. The main idea is to execute in secure element, TLS1.3 server, secured by 256 bits pre-shared-key. All cryptographic resources are protected by TLS-PSK sessions. In the user plane the secure element is a TLS server, what enables to define uniform resource identifier (URI) for embedded resources. The user is optionally equipped with access card (TLS identity module) that stores procedures working with PSK. The security level may be increased by the use of dedicated terminal, similar to payment terminal, which protects dual factor authentication. We present two open platforms: keystore devices hosting preconfigured TLS-SE secure elements, and personal HSM supporting on-demand TLS-SE applications. Finally we detail some performance elements.",

keywords = "IOSE, Secure Element, Security, TLS",

author = "Pascal Urien",

note = "Publisher Copyright: {\textcopyright} 2023 IEEE.; 2023 International Conference on Computing, Networking and Communications, ICNC 2023 ; Conference date: 20-02-2023 Through 22-02-2023",

year = "2023",

month = jan,

day = "1",

doi = "10.1109/ICNC57223.2023.10074066",

language = "English",

series = "2023 International Conference on Computing, Networking and Communications, ICNC 2023",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "450--455",

booktitle = "2023 International Conference on Computing, Networking and Communications, ICNC 2023",

}

Urien, P 2023, On Line Secure Elements: Deploying High Security Keystores and Personal HSMs. in 2023 International Conference on Computing, Networking and Communications, ICNC 2023. 2023 International Conference on Computing, Networking and Communications, ICNC 2023, Institute of Electrical and Electronics Engineers Inc., pp. 450-455, 2023 International Conference on Computing, Networking and Communications, ICNC 2023, Honolulu, United States, 20/02/23. https://doi.org/10.1109/ICNC57223.2023.10074066

On Line Secure Elements: Deploying High Security Keystores and Personal HSMs. / Urien, Pascal.
2023 International Conference on Computing, Networking and Communications, ICNC 2023. Institute of Electrical and Electronics Engineers Inc., 2023. p. 450-455 (2023 International Conference on Computing, Networking and Communications, ICNC 2023).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - On Line Secure Elements

T2 - 2023 International Conference on Computing, Networking and Communications, ICNC 2023

AU - Urien, Pascal

PY - 2023/1/1

Y1 - 2023/1/1

N2 - This paper presents innovative approach to deploy secure elements providing cryptographic resources in TCP/IP environment. The main idea is to execute in secure element, TLS1.3 server, secured by 256 bits pre-shared-key. All cryptographic resources are protected by TLS-PSK sessions. In the user plane the secure element is a TLS server, what enables to define uniform resource identifier (URI) for embedded resources. The user is optionally equipped with access card (TLS identity module) that stores procedures working with PSK. The security level may be increased by the use of dedicated terminal, similar to payment terminal, which protects dual factor authentication. We present two open platforms: keystore devices hosting preconfigured TLS-SE secure elements, and personal HSM supporting on-demand TLS-SE applications. Finally we detail some performance elements.

AB - This paper presents innovative approach to deploy secure elements providing cryptographic resources in TCP/IP environment. The main idea is to execute in secure element, TLS1.3 server, secured by 256 bits pre-shared-key. All cryptographic resources are protected by TLS-PSK sessions. In the user plane the secure element is a TLS server, what enables to define uniform resource identifier (URI) for embedded resources. The user is optionally equipped with access card (TLS identity module) that stores procedures working with PSK. The security level may be increased by the use of dedicated terminal, similar to payment terminal, which protects dual factor authentication. We present two open platforms: keystore devices hosting preconfigured TLS-SE secure elements, and personal HSM supporting on-demand TLS-SE applications. Finally we detail some performance elements.

KW - IOSE

KW - Secure Element

KW - Security

KW - TLS

U2 - 10.1109/ICNC57223.2023.10074066

DO - 10.1109/ICNC57223.2023.10074066

M3 - Conference contribution

AN - SCOPUS:85152004632

T3 - 2023 International Conference on Computing, Networking and Communications, ICNC 2023

SP - 450

EP - 455

BT - 2023 International Conference on Computing, Networking and Communications, ICNC 2023

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 20 February 2023 through 22 February 2023

ER -

Urien P. On Line Secure Elements: Deploying High Security Keystores and Personal HSMs. In 2023 International Conference on Computing, Networking and Communications, ICNC 2023. Institute of Electrical and Electronics Engineers Inc. 2023. p. 450-455. (2023 International Conference on Computing, Networking and Communications, ICNC 2023). doi: 10.1109/ICNC57223.2023.10074066

On Line Secure Elements: Deploying High Security Keystores and Personal HSMs

Abstract

Publication series

Conference

Keywords

Access to Document

Fingerprint

Cite this