Affiliation:
1. Key Laboratory of Aerospace Information Security and Trusted Computing, Ministry of Education, School of Cyber Science and Engineering, Wuhan University, Wuhan 430072, China
Abstract
Efficient safeguarding of the security of interconnected devices, which are often resource-constrained, can be achieved through collective remote attestation schemes. However, in existing schemes, the attestation keys are independent of the device configuration, leading to increased requirements for the trusted computing base. This paper introduces a symmetrical aggregate trust attestation that is compatible with devices adhering to the device identifier composition engine framework. The proposed scheme simplifies the trusted computing base requirements by generating an attestation key that is derived from the device configuration. Moreover, the scheme employs distributed aggregate message authentication codes to reduce both the communication volume within the device network and the size of the attestation report, thereby enhancing the aggregation efficiency. In addition, the scheme incorporates interactive authentication to accurately identify compromised devices.
Funder
National Natural Science Foundation of China
Reference43 articles.
1. Margolis, J., Oh, T.T., Jadhav, S., Kim, Y.H., and Kim, J.N. (2017, January 24–25). An in-depth analysis of the mirai botnet. Proceedings of the 2017 International Conference on Software Security and Assurance (ICSSA), Altoona, PA, USA.
2. (2023, December 01). A Bug in Smart Meters in Spain Could Cause Widespread Blackouts. Available online: http://www.freebuf.com/news/47634.html.
3. (2023, December 01). Overview of IoT Threats in 2023. Available online: https://securelist.com/iot-threat-report-2023/110644/.
4. (2023, December 01). The 2023 IoT Security Landscape Report. Available online: https://www.bitdefender.com/files/News/CaseStudies/study/429/2023-IoT-Security-Landscape-Report.pdf.
5. Ammar, M., Crispo, B., and Tsudik, G. (2020, January 21–25). SIMPLE: A Remote Attestation Approach for Resource-constrained IoT devices. Proceedings of the 2020 ACM/IEEE 11th International Conference on Cyber-Physical Systems (ICCPS), Sydney, NSW, Australia.