Paper Info
Title
Lightweight Attestation And Secure Code Update For Multiple Separated Microkernel Tasks
Abstract
By implementing all non-essential operating system services as user space tasks and strictly separating those tasks, a microkernel can effectively increase system security. However, the isolation of tasks does not necessarily imply their trustworthiness. In this paper, we propose a microkernel-based system architecture enhanced with a multi-context hardware security module (HSM) that enables an integrity verification, anomaly detection, and efficient lightweight attestation of multiple separated tasks. Our attestation protocol, which we formally verified using the automated reasoning tool ProVerif, implicitly proves the integrity of multiple tasks, efficiently communicates the result to a remote verifier, and enables a secure update protocol without the need for digital signatures that require computationally expensive operations.
Year
DOI
Venue
2013
10.1007/978-3-319-27659-5_2
INFORMATION SECURITY (ISC 2013)
Keywords
Field
DocType
Lightweight attestation, Microkernel tasks, Multi-context hardware security module, Trusted platform module
Automated reasoning,Hardware security module,Computer science,Microkernel,Digital signature,Trusted Platform Module,Direct Anonymous Attestation,Systems architecture,User space,Embedded system
Conference
Volume
ISSN
Citations 
7807
0302-9743
0
PageRank 
References 
Authors
0.34
9
3
Name
Order
Citations
PageRank
Steffen Wagner101.01
Christoph Krauß2576.76
Claudia Eckert37613.13