Beyond secure channels

Gasmi, Yacine; Sadeghi, Ahmad-Reza; Stewin, Patrick; Unger, Martin Karl; Asokan, N.

doi:10.1145/1314354.1314363

Cited by 72 publications

(45 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Another problem in achieving comprehensive information is that, although many researchers are developing specialized tools for measurement and attestation, including [23,32,42,10,2], these tools have not been integrated into a unifying, multi-purpose attestation architecture. Connecting these disparate viewpoints on a single system into a single comprehensive attestation platform will be a significant challenge.…”

Section: Open Problemsmentioning

confidence: 99%

Principles of remote attestation

Coker

Guttman

Loscocco

et al. 2011

Int. J. Inf. Secur.

183

106

View full text Add to dashboard Cite

Abstract. Remote attestation is the activity of making a claim about properties of a target by supplying evidence to an appraiser over a network. We identify five central principles to guide development of attestation systems. We argue that (i) attestation must be able to deliver temporally fresh evidence; (ii) comprehensive information about the target should be accessible; (iii) the target, or its owner, should be able to constrain disclosure of information about the target; (iv) attestation claims should have explicit semantics to allow decisions to be derived from several claims; and (v) the underlying attestation mechanism must be trustworthy. We illustrate how to acquire evidence from a running system, and how to transport it via protocols to remote appraisers. We propose an architecture for attestation guided by these principles. Virtualized platforms, which are increasingly well supported on stock hardware, provide a natural basis for our attestation architecture.

show abstract

Section: Open Problemsmentioning

confidence: 99%

Principles of remote attestation

Coker

Guttman

Loscocco

et al. 2011

Int. J. Inf. Secur.

183

106

View full text Add to dashboard Cite

show abstract

“…A trusted channel is a secure channel that is cryptographically bound to the current state of the communicating parties [165]. This state can be a hardware and/or software con guration, and ideally, it will require a trustworthy component to validate that it is the same as claimed.…”

Section: Rationalementioning

confidence: 99%

“…The concept of trusted channel protocols was put forward by Gasmi et al [165] along with the adaptation of the TLS protocol [100] to meet the trusted channel requirements.…”

Section: Related Workmentioning

confidence: 99%

“…These protocols include the Station-to-Station (STS) protocol [174], the Aziz-Di e (AD) protocol [175], the ASPeCT protocol [176,177], Just-Fast-Keying (JFK) [178], trusted TLS (T2LS) [165], SCP81 [169], Markantonakis-Mayes (MM) protocol [83], and the Sirett-Mayes (SM) protocol [173].…”

Section: Related Workmentioning

confidence: 99%

“…In this thesis, the T2LS protocol described by Gasmi et al [165] is used that is described in this section. The messages listed below are on top of the existing TLS protocol that we do not detail in this section.…”

Section: A6 Trusted Transport Layer Protocol (T2ls) Protocolmentioning

confidence: 99%

See 2 more Smart Citations