Flexible Mechanisms for Remote Attestation-Reference-Cited by-同舟云学术

Flexible Mechanisms for Remote Attestation

Published:2021-11-30 Issue:4 Volume:24 Page:1-23
ISSN:2471-2566
Container-title:ACM Transactions on Privacy and Security
language:en
Short-container-title:ACM Trans. Priv. Secur.

Author:

Helble Sarah C.¹,Kretz Ian D.²,Loscocco Peter A.³,Ramsdell John D.²,Rowe Paul D.²,Alexander Perry⁴^ORCID

Affiliation:

1. Johns Hopkins University Applied Physics Laboratory, Laurel, MD

2. The MITRE Corporation, Bedford, MA, USA

3. National Security Agency, Fort Meade, MD, USA

4. The University of Kansas, Lawrence, KS, USA

Abstract

Remote attestation consists of generating evidence of a system’s integrity via measurements and reporting the evidence to a remote party for appraisal in a form that can be trusted. The parties that exchange information must agree on formats and protocols. We assert there is a large variety of patterns of interactions among appraisers and attesters of interest. Therefore, it is important to standardize on flexible mechanisms for remote attestation. We make our case by describing scenarios that require the exchange of evidence among multiple parties using a variety of message passing patterns. We show cases in which changes in the order of evidence collection result in important differences to what can be inferred by an appraiser. We argue that adding the ability to negotiate the appropriate kind of attestation allows for remote attestations that better adapt to a dynamically changing environment. Finally, we suggest a language-based solution to taming the complexity of specifying and negotiating attestation procedures.

Funder

NSA Science of Security Initiative

DARPA

Publisher

Association for Computing Machinery (ACM)

Subject

Safety, Risk, Reliability and Quality,General Computer Science

Link

https://dl.acm.org/doi/pdf/10.1145/3470535

Reference18 articles.

1. Principles of remote attestation

2. Attestation: Evidence and Trust

3. C. Fisher D. Bukovick R. Bourquin and R. Dobry. 2012. SAMSON—Secure Authentication Modules. General Dynamics C4S. Retrieved August 9 2021 from https://sourceforge.net/p/secureauthentic/wiki/Home/. C. Fisher D. Bukovick R. Bourquin and R. Dobry. 2012. SAMSON—Secure Authentication Modules. General Dynamics C4S. Retrieved August 9 2021 from https://sourceforge.net/p/secureauthentic/wiki/Home/.

4. IBM. 2015. OpenAttestation (OAT) Project. Retrieved August 9 2021 from https://wiki.openstack.org/wiki/ OpenAttestation. IBM. 2015. OpenAttestation (OAT) Project. Retrieved August 9 2021 from https://wiki.openstack.org/wiki/ OpenAttestation.

Cited by 14 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Evidence Tampering and Chain of Custody in Layered Attestations;Proceedings of the 26th International Symposium on Principles and Practice of Declarative Programming;2024-09-09

2. Smart industrial information integration: a lightweight privacy protection model in an intelligent manufacturing architecture;Journal of Engineering Design;2024-08-27

3. SDATA: Symmetrical Device Identifier Composition Engine Complied Aggregate Trust Attestation;Symmetry;2024-03-06

4. Trustworthy confidential virtual machines for the masses;Proceedings of the 24th International Middleware Conference on ZZZ;2023-11-27

5. Universal Remote Attestation for Cloud and Edge Platforms;Proceedings of the 18th International Conference on Availability, Reliability and Security;2023-08-29