Title | ||
---|---|---|
Lightweight Attestation And Secure Code Update For Multiple Separated Microkernel Tasks |
Abstract | ||
---|---|---|
By implementing all non-essential operating system services as user space tasks and strictly separating those tasks, a microkernel can effectively increase system security. However, the isolation of tasks does not necessarily imply their trustworthiness. In this paper, we propose a microkernel-based system architecture enhanced with a multi-context hardware security module (HSM) that enables an integrity verification, anomaly detection, and efficient lightweight attestation of multiple separated tasks. Our attestation protocol, which we formally verified using the automated reasoning tool ProVerif, implicitly proves the integrity of multiple tasks, efficiently communicates the result to a remote verifier, and enables a secure update protocol without the need for digital signatures that require computationally expensive operations. |
Year | DOI | Venue |
---|---|---|
2013 | 10.1007/978-3-319-27659-5_2 | INFORMATION SECURITY (ISC 2013) |
Keywords | Field | DocType |
Lightweight attestation, Microkernel tasks, Multi-context hardware security module, Trusted platform module | Automated reasoning,Hardware security module,Computer science,Microkernel,Digital signature,Trusted Platform Module,Direct Anonymous Attestation,Systems architecture,User space,Embedded system | Conference |
Volume | ISSN | Citations |
7807 | 0302-9743 | 0 |
PageRank | References | Authors |
0.34 | 9 | 3 |
Name | Order | Citations | PageRank |
---|---|---|---|
Steffen Wagner | 1 | 0 | 1.01 |
Christoph Krauß | 2 | 57 | 6.76 |
Claudia Eckert | 3 | 76 | 13.13 |