Paper Info
Title
On leveraging stochastic models for remote attestation
Abstract
Remote attestation is an essential feature of Trusted Computing that allows a challenger to verify the trustworthiness of a target platform. Existing approaches towards remote attestation are largely static or too restrictive. In this paper, we present a new paradigm in remote attestation that leverages recent advancements in intrusion detection systems. This new approach allows the modeling of an application's behavior through stochastic models of machine learning. We present the idea of using sequences of system calls as a metric for our stochastic models to predict the trustworthiness of a target application. This new remote attestation technique enables detection of unknown and zero-day malware as opposed to the known-good and known-bad classification currently being used. We provide the details of challenges faced in the implementation of this new paradigm and present empirical evidence supporting the effectiveness of our approach.
Year
DOI
Venue
2010
10.1007/978-3-642-25283-9_19
INTRUST
Keywords
Field
DocType
target platform,trusted computing,new remote attestation technique,new paradigm,remote attestation,present empirical evidence,new approach,target application,stochastic model,intrusion detection system
Trusted Computing,Empirical evidence,Trustworthiness,Computer science,Computer security,System call,Stochastic modelling,Malware,Intrusion detection system,Distributed computing
Conference
Citations 
PageRank 
References 
3
0.43
20
Authors
3
Name
Order
Citations
PageRank
Tamleek Ali1928.66
Mohammad Nauman248238.84
Zhang Xinwen31695104.61