TCG

Trusted Computing Group

Security
Introduced in Rel-8
The Trusted Computing Group (TCG) is a consortium that develops and promotes open, vendor-neutral, global industry standards for trusted computing hardware and software. In 3GPP, its specifications are referenced to define security requirements for trusted environments, particularly for secure boot, remote attestation, and hardware-based root of trust in devices and network elements.

Description

The Trusted Computing Group (TCG) is not a 3GPP-specific technology but an independent industry consortium whose standards are adopted and referenced within 3GPP specifications to enhance system security. The TCG's primary contribution is the definition of a Trusted Platform Module (TPM), a dedicated microcontroller designed to secure hardware through integrated cryptographic keys. In the context of 3GPP, TCG standards provide the foundation for establishing a hardware-rooted chain of trust, which is critical for secure boot processes, platform integrity verification, and remote attestation. This ensures that a device or network component boots only with authorized software and remains in a known, trusted state, protecting against firmware attacks and unauthorized modifications.

The architecture revolves around the TPM, which contains Endorsement Keys (EK), Storage Root Keys (SRK), and Platform Configuration Registers (PCRs). The EK is a unique, embedded cryptographic key that identifies the TPM, while the SRK secures keys stored in the TPM. PCRs hold cryptographically hashed measurements of the platform's state (e.g., BIOS, bootloader, OS). During secure boot, each component is measured (hashed) and extended into a PCR before execution. A remote verifier can request an attestation report—a signed statement of the PCR values—to validate the platform's integrity. This process is integral to 3GPP's security framework for ensuring trusted execution environments in User Equipment (UE) and network functions.

Within 3GPP, TCG principles are applied to specifications like TS 33.812 (Study on Security Aspects of Remote Provisioning and Change of Subscription for Machine to Machine Equipment) and TS 33.916 (Study on security aspects of the 5G System). These documents reference TCG standards to define requirements for secure element management, trusted platform verification, and hardware-based security for IoT devices and 5G network equipment. The integration allows 3GPP systems to leverage proven, standardized trusted computing mechanisms, enhancing overall network resilience against sophisticated attacks targeting device integrity and software authenticity.

Purpose & Motivation

The Trusted Computing Group was created to address the growing need for hardware-based security that is resilient to software attacks. Traditional software-only security solutions are vulnerable to compromise if the underlying operating system or firmware is maliciously altered. The TCG's standards provide a hardware root of trust, enabling systems to cryptographically verify their own integrity from boot-up onwards. This is crucial for modern telecommunications, where devices and network elements must be trusted to handle sensitive subscriber data, perform authentication, and execute critical network functions without tampering.

In 3GPP, referencing TCG standards solves specific problems related to device integrity and secure provisioning. For example, in Machine-to-Machine (M2M) and IoT scenarios (addressed in TS 33.812), remote provisioning of subscriptions requires absolute trust in the device's secure element and boot process. A compromised device could leak credentials or be cloned. By incorporating TCG principles, 3GPP ensures that devices can attest to their trusted state before receiving sensitive operational data. Similarly, for 5G systems (TS 33.916), the increased use of network virtualization and cloud-native functions necessitates robust mechanisms to verify the integrity of both hardware and software platforms hosting network functions, protecting against supply-chain attacks and ensuring service availability.

Historically, security in mobile networks focused heavily on cryptographic protocols for air interface protection (e.g., AKA) and core network signaling. However, as attacks evolved to target device firmware and platform software, a gap emerged in verifying the underlying trustworthiness of the execution environment. The adoption of TCG standards by 3GPP fills this gap by providing a standardized, interoperable framework for hardware-assisted security. This allows vendors and operators to implement trusted computing features consistently across diverse device and infrastructure ecosystems, enhancing security assurance in an increasingly complex threat landscape.

Key Features

  • Defines hardware-based root of trust via the Trusted Platform Module (TPM)
  • Specifies secure boot process with cryptographic measurement of each software component
  • Enables remote attestation for platform integrity verification
  • Provides standardized cryptographic key hierarchy for secure key storage
  • Supports sealed storage to bind data to specific platform states
  • Facilitates trusted execution environments for sensitive operations

Evolution Across Releases

Rel-8 Initial

Initial reference to TCG standards in 3GPP for security studies. TS 33.812 studied the application of trusted computing for secure remote provisioning and management of M2M equipment, establishing the need for hardware-based integrity verification in machine-type communications.

TS 33.812TS 33.916

Defining Specifications

SpecificationTitle
TS 33.812 3GPP TR 33.812
TS 33.916 3GPP TR 33.916