Paper Info
Title
Policy-Based Implicit Attestation For Microkernel-Based Virtualized Systems
Abstract
We present an attestation mechanism that enables a remote verifier to implicitly evaluate the trustworthiness of the prover's system through policies. Those policies are verified and enforced by a TPM 2.0, when the attestor interacts with a virtualized hardware component of the prover's system. For instance, when the verifier reads a virtualized sensor device and requests integrity-protected sensor data, such as the average temperature, a heartbeat value, or an anomaly detection score, the prover's TPM, which acts as a trust anchor, checks and enforces the policies specified by the verifier. The prover, in turn, is also able to define policies, which can limit access to certain hardware components and are also enforced by the TPM. As a result, both parties have to cooperate for a successful attestation, which implicitly creates verifiable proof of the prover's trustworthiness using mainly symmetric instead of expensive asymmetric cryptographic operations like digital signatures.
Year
DOI
Venue
2016
10.1007/978-3-319-45871-7_19
INFORMATION SECURITY, (ISC 2016)
Keywords
Field
DocType
Remote attestation, Trusted platform module, Policy, Data integrity, Microkernel
Trust anchor,Computer science,Cryptography,Microkernel,Trusted Platform Module,Digital signature,Data integrity,Verifiable secret sharing,Gas meter prover,Operating system
Conference
Volume
ISSN
Citations 
9866
0302-9743
0
PageRank 
References 
Authors
0.34
5
2
Name
Order
Citations
PageRank
Steffen Wagner101.01
Claudia Eckert27613.13