Wave Systems Corp. (NASDAQ:WAVX www.wave.com) announced today that Chief Scientist Dr. Robert Thibadeau will present at the Federal Cybersecurity Conference today, addressing how embedded hardware security built on open standards can thwart threats present in laptops or mobile devices at the firmware level. Dr. Thibadeau will educate attendees on capabilities of the Trusted Platform Module security chip and its mobile equivalent for detecting pre-boot attacks that have previously eluded commercial anti-virus products.
The presentation will cover how laptops, smartphones and mobile devices can be protected under a unified framework built upon Trusted Computing standards. Discussion will focus upon how to provide system integrity measurements through the use of keys native to the TPM for strong and verifiable platform identity. This information can be used by government networks and servers, and Cloud services, to ensure that only known devices are connected to critical applications and sources of sensitive data.
WHAT: "Why Hardware Boot Security is becoming a National Standard: And what it is."
TRACK C: Sharing Best Practices: Mobile Risk Management and Hardware Boot Security
WHEN: Wednesday, October 5th, 2011 from 4:10 pm — 04:45 pm ET
WHERE: Baltimore Inner Harbor Sheraton, Baltimore, MD
Modern computers rely on fundamental system firmware, commonly known as the system Basic Input/Output System (BIOS), to facilitate the hardware initialization process and transition control to the operating system. Although pre-OS-boot threats have been known for over 20 years, increasingly sophisticated attacks on this surface have caused The National Institute of Standards and Technology (NIST) to offer guidelines and security recommendations for protecting a computer's BIOS in NIST special publication 800-147 (Initial guidelines, with more guidance coming).
"This talk will offer insights into the new countermeasures that government and industry have at their disposal," said Dr. Thibadeau, "We'll explain what Hardware Boot Security is; discuss why adoption is growing in the government security marketplace; and discuss practical solutions for securing laptops with hardware security such as the TPM. And we'll look at some surprising security relationships to smart phones now dominating the mobile space."
Wave introduced and demonstrated a first of its kind pre-boot security solution at last month's NSA Trusted Computing Conference, called Wave Endpoint Monitor, which provides the foundation to enable government networks, servers and Cloud services to determine that a device has a properly configured self-encrypting drive, or that a PC was booted from its primary drive—all before any sensitive data is allowed to be downloaded. Dr. Thibadeau will discuss how solutions of this nature provide IT with a powerful tool to collect, manage and analyze pre-OS health information, providing tips on how to leverage the advanced hardware trust enabled by the TPM.
The 2011 Federal Cybersecurity Conference and Workshop is taking place this week, to discuss strategies and tactics for securing and defending Federal IT systems and networks for trusted and reliable global communication. The conference is supported by an advisory council of representatives from National Institute of Standards and Technology (NIST), National Security Agency (NSA), Department of Defense (DoD), the Intelligence Community (IC), and various Industry partners.
Dr. Robert Thibadeau is Sr. Vice President and Chief Scientist at Wave. He is the pioneer and original patent holder of the self-encrypting drive, and chaired the Trusted Computing Group's Storage Workgroup. Dr. Thibadeau co-authored the Data Breach and Encryption Handbook, which was published by the ABA in February. Thibadeau sits on the ABA's eDiscovery and Digital Evidence Committee. He is also a founding director of the Carnegie Mellon Robotics Institute and has been on the faculty since 1979.