Browse Definitions :
Definition

Roots of Trust (RoT)

Contributor(s): Matthew Haughn

Roots of Trust (RoT) is a set of functions in the trusted computing module that is always trusted by the computer’s operating system (OS). The RoT serves as separate compute engine controlling the trusted computing platform cryptographic processor on the PC or mobile device it is embedded in.

The RoT provides the functionality behind trusted computing features including

  • On the fly drive encryption.
  • Detection and reporting of unauthorized changes to the operating system or programs.
  • Detection of rootkits.
  • Memory curtaining to prevent programs from inappropriately reading from or writing to another program's memory.
  • Hardware-based digital rights management (DRM) support.

Critics argue that this level of control given to the RoT and trusted computing could be used anti-competitively to control what software is used in a computer or deny control of copyrighted data or other user data. Furthermore, although the hardware makes it harder for someone to remotely circumvent the security mechanisms, they could be overcome by physical modification.

This was last updated in January 2014

Continue Reading About Roots of Trust (RoT)

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

SearchCompliance

  • risk assessment

    Risk assessment is the identification of hazards that could negatively impact an organization's ability to conduct business.

  • PCI DSS (Payment Card Industry Data Security Standard)

    The Payment Card Industry Data Security Standard (PCI DSS) is a widely accepted set of policies and procedures intended to ...

  • risk management

    Risk management is the process of identifying, assessing and controlling threats to an organization's capital and earnings.

SearchSecurity

SearchHealthIT

SearchDisasterRecovery

  • call tree

    A call tree is a layered hierarchical communication model that is used to notify specific individuals of an event and coordinate ...

  • Disaster Recovery as a Service (DRaaS)

    Disaster recovery as a service (DRaaS) is the replication and hosting of physical or virtual servers by a third party to provide ...

  • cloud disaster recovery (cloud DR)

    Cloud disaster recovery (cloud DR) is a combination of strategies and services intended to back up data, applications and other ...

SearchStorage

Close