TPMs are the root of all security: No TPM = No security
KAL has announced the immediate availability of a whitepaper that explores the issue of ATM security and how ATMs can be secured to the maximum possible extent. Clearly, keeping ATMs secure is essential ‒ not only do ATM networks have responsibility for millions of dollars of cash, they are also a potential entry point to a bank’s host computer systems that can transfer large amounts of money around the world.
In this whitepaper, KAL’s CEO Aravinda Korala says that TPMs are the “core root of trust” of computing systems: TPMs must be deployed correctly in order to fully secure ATM networks.
TPMs are tiny semiconductor devices that are embedded inside all PCs and are sometimes even implemented inside the CPU itself. TPMs are a secure vault for encryption keys and the core root of trust that allows the whole network to be fully locked down. TPMs have been shipped inside PCs and laptops for a long time, but they are often not deployed fully in bank ATM networks.
This paper is an attempt at changing that situation. It looks at what banks must do when designing their ATM security architecture and how the industry needs to leverage the TPM to lockdown the hardware, software and the network. You can read the whitepaper online and join the discussion here.