Token Scout TPM
Token Scout Trusted Platform Module allows developers to improve the security and integrity of their software and hardware products. Token Scout uses the CryptoArchitectureTM technology to provide the highest security in the market.
Token Scout TPMs are supplied as USB tokens. They might be customized both at firmware and hardware level. All devices might be purchased with internal flash memory, making them ideal for a wide range of applications such as:
- Digital Rights Management
- Access Authentication for SaaS, online gaming or other online resources
- Enforcement of software licenses
- Integrity assurance whithin untrusted platforms
- Protection of passwords and credentials
- Encryption or sealing of data
- Offline ticketing
Trusted platform module
A TPM is a device that ensures the integrity - or trustworthiness - of the platform where it is embedded or attached. All TPMs share some basic functions used as building blocks for more complex applications. Those functions include:
- Encryption/Decryption
- Hashing and Signing
- Pseudo-Random Number Generator
- Cryptographic Key Generator
- Real-Time Clock
In addition, Token Scout TPM allows developers to include custom procedures that will be stored and executed within the TPM. Those procedures are expressed in the C programming language and later combined into a CryptoArchitectureTM device using Token Scout SDK. Some examples of fuctions that might be created include:
- Data Transformation
- Event Logging
- Configuration Management
- Context Tracking
- Content Analysis
development tools
Token Scout TPM is programmed with the Token Scout SDK. The SDK includes the following tools:
- CryptoArchitecture Toolchain: allows the expression of functions in the C programming language and their translation into firmware. The toolchain is currently only available for Windows NT platforms (W2K, XP, Vista, W7, etc). Future releases might be available for some Linux distributions.
- Programming Software: allows the configuration of Token Scout TPMs using the USB interface. No extra hardware is required. TPMs can be securely programmed at the vendor's or distributor's facilities or at the final user location.
- Communication Libraries: they provide the basic functionality to communicate the Token Scout TPM with the applications running on the operating system of a computer.
compliance
Token Scout TPMs differ from other TPMs in the market in several ways. Most noticeably, Token Scout does not implement the TPM standard as mantained by the Trusted Computing Group. While Token Scout provides the most important functionality of standard TPMs, its implementation is intentionally left open for further customization.
Most developers appreciate the degree of freedom of Token Scout at this level because it allows easier and smoother migration between TCG-TPM and other open or proprietary technologies. If at some stage of your product life Token Scout TPM does not fully satisfy your requirements, the migration to other Token or TPM vendors should be straightforward.
Some developers might want to transform their Token Scout TPM into a TCG TPM compliant device, while others might prefer to keep it simpler and use only the functions they need. Provided the right Token Scout configuration is chosen, the device can be transformed into a compliant device with the aid of Token Scout SDK and some programming effort. Future releases of the Token Scout SDK might automate this step.
requirements
Token Scout TPMs can operate under virtually any operating system. Communication is carried out via standard USB protocols available in most platforms, using the existing drivers of the operating system. Since there is no need to install drivers or any other code that requires administrator privileges, integration and deployment is fast and easy.
Development of the firmware must be carried out on a Windows NT environment (W2K, XP, Vista, W7, etc), using the CryptoArchitectureTM toolchain. The toolchain works as SaaS and requires an internet connection.
