A User Centric Security Model for Tamper-Resistant Devices

C.7 Application Binding Protocol - Local
139 return new ScTPM( ) ;
140 }
141 public void ScTPMUpdate( ServerApp obServerApp , ClientApp
142 obClientApp ) {
143 myServerAppRef = obServerApp ;
144 myClientAppRef = obClientApp ;
145 myServerAppRef . digestUpdate ( scTPMDigestBuffer ) ;
146 myClientAppRef . digestUpdate ( scTPMDigestBuffer ) ;
147 }
148 public void clientTPMKeyAgreement (AESKey TPMClient ) {
149 TpmClientApp = TPMClient ;
150 }
151 public void serverTPMKeyAgreement (AESKey TPMServer ) {
152 TpmServerApp = TPMServer ;
153 }
154 public void v a l i d a t e A p p l i c a t i o n s ( byte [ ] p_Message ) {
155 pMessage = p_Message ;
156 g e n e r a t e D e c r y t i o n ( ( short ) 30 , ( short ) 32 , TpmClientApp ) ;
157 U t i l . arrayCopyNonAtomic ( pMessage , ( short ) ( pMessage [ 0 ] +
158 C l i e n t I d e n t i t y . l e n g t h +
159 S e r v e r I d e n t i t y . l e n g t h ) ,
160 ClientRandomNumber , ( short ) 0 , ( short )
161 ClientRandomNumber . l e n g t h ) ;
162 g e n e r a t e D e c r y t i o n ( ( short ) 68 , ( short ) 32 , TpmServerApp ) ;
163 U t i l . arrayCopyNonAtomic ( pMessage , ( short ) ( pMessage [ 0 ] +
164 C l i e n t I d e n t i t y . l e n g t h +
165 S e r v e r I d e n t i t y . l e n g t h ) ,
166 ServerRandomNumber , ( short ) 0 , ( short )
167 ServerRandomNumber . l e n g t h ) ;
168 tpmDigestGen . doFinal ( AppDataFile , ( short ) 0 , ( short )
169 AppDataFile . length , scTPMDigestBuffer ,
170 ( short ) 0) ;
171 tpmDigestGen . doFinal ( AppDataFile , ( short ) 0 , ( short )
172 AppDataFile . length , scTPMDigestBuffer ,
173 ( short ) 0) ;
174 AESKey sessionKey ;
175 byte [ ] tempDebugSessionKey = JCSystem . makeTransientByteArray (
176 ( short ) 16 , JCSystem .MEMORY_TYPE_TRANSIENT_DESELECT) ;
177 sessionKey = (AESKey) KeyBuilder . buildKey ( KeyBuilder .TYPE_AES,
178 KeyBuilder .LENGTH_AES_128, f a l s e ) ;
179 RandomData tpmKeyGenPRNG = RandomData . g e t I n s t a n c e
180 (RandomData .ALG_PSEUDO_RANDOM) ;
181 tpmKeyGenPRNG . generateData ( tempDebugSessionKey , ( short ) 0 , ( short )
182 tempDebugSessionKey . l e n g t h ) ;
183 sessionKey . setKey ( tempDebugSessionKey , ( short ) 0) ;
184 pMessage [ 0 ] = ( byte ) U t i l . arrayCopyNonAtomic ( scTPMDigestBuffer ,
185 ( short ) 0 , pMessage , ( short ) 4 , ( short )
186 scTPMDigestBuffer . l e n g t h ) ;
187 pMessage [ 0 ] += ( byte ) sessionKey . getKey ( pMessage , ( short )
188 ( pMessage [ 0 ] ) ) ;
189 ClientRandomNumber [ 1 5 ] = (byte ) ( ClientRandomNumber [ 1 5 ] | (byte )
376