6 Dec 2010

The tNAC consortium is happy to announce its cooperation with the ESUKOM research project. The ESUKOM project aims to develop a security solution that features realtime security for enterprise networks based upon the TCG's IF-MAP specification. In this context, ESUKOM especially addresses threats that are introduced by modern smartphones.

14 Apr 2010

The third tNAC workshop was held on April, 14th at the University of Applied Sciences and Arts, Hanover. The consortium was able to present the first tNAC prototype. This prototype integrates Turaya and TNC@FHH on the client-side and thus enables Remote Attestation for the Static Chain of Trust in 802.1X environments via TNC. Furthermore, the prototype supports basic Remediation and Policy Management. Thus, the tNAC consortium successfully reached the second milestone according to the project plan. In the next project phase, the prototype implementation will be refactored and extended with new features (such as VPN support and advanced Remediation techniques).

Hanover. On March 4th 2010, a meeting between partners of the two research projects tNAC and VOGUE was held in Hanover, Lower Saxony. tNAC was represented by the Fachhochschule Hannover, the VOGUE project was represented by Fraunhofer SIT.

The tNAC project focuses on the development of a trustworthy Network Access Control solution. By the integration of Turaya, a Trusted Computing Platform, and TNC@FHH, a Network Access Control (NAC) implementation, tNAC aims to achieve a significantly higher security level compared to other available NAC solutions.
The research topic especially includes the reasonable and practically feasible use of Trusted Computing technology in conjunction with an interoperable NAC solution which is based upon the Trusted Network Connect (TNC) specifications of the Trusted Computing Group (TCG). Real world scenarios are provided by the participating partners. One scenario is the dynamic and secure connection of mobile endpoints (Laptops) to a company's network, both locally via LAN and remotely via VPN.

Because of the new and steadily growing demands that are made on mobile phones in terms of their trustworthiness, the VOGUE project aims to develop a platform in order to secure mobile endpoints. The platform can be used on arbitrary mobile endpoints. This secure platform will especially support a trustworthy device authentication. Based upon the real worl scenario "Mobile guest access to a company's network", with focus on VPN solutions, the security benefit provided by the VOGUE platform will be demonstrated. The use of the VOGUE platform will not be restricted to this scenario. In fact, VOGUE will support to secure arbitrary mobile applications.

The specifications of the Trusted Computing Group (TCG) form the technological basis for VOGUE. Particularly the Trusted Network Connect (TNC) specifications, wich support the trustworthy access of mobile endpoints to IT infrastructures, will be used within VOGUE. The implementation of VOUGE is planned to be based on the Android platform, an open source operating system for mobile devices, that enables the realisation of device oriented security measures for TNC and the integration of Trusted Computing technology.

During the meeting, topics for three theses have been defined:
1. Development of a TNC-Client/Framework for the Android Platform
2. Development of a IF-MAP Client/Framework for the Android Platform
3. Integration of Trusted Computing Technology in the Android Platform

Three students of the Fachhochschule Hannover will work on these topics. The results will be used within tNAC and VOGUE. For the future, a continuous collaboration between both projects is expected.

01 Jul 2008

On Tuesday the 1st of July 2008 the trusted network access control (tNAC) project has been launched. The roadmap is based on the results of the EMSCB project Turaya and the TNC project of the University of Applied Sciences and Arts, Hanover. The aim is the development of a manageable Open Source NAC solution with full TNC compatibility and TPM support on the basis of real world scenarios. The project was introduced to the expert audience at the "Future of Trust in Computing Conference" in Berlin. tNAC is under the patronage of the Universities of Applied Sciences Gelsenkirchen and Hanover. The project is supported by the German companies Datus AG, Sirrix AG and the Steria Mummert Consulting AG. tNAC is sponsored by the "Federal Ministry of Education and Research".

Link to the TC-Conference 2008 Programme:
http://www.tc-conference.com