Salad

“…The related work [13][14][15][16][17][18][19][20][21][22][23][24][25][26][27][28] is illustrated in the introduction. Existing attestation methods are classified into symmetric and asymmetric categories.…”

“…These techniques aim to verify the integrity of these devices. Considering that IoT embedded devices often operate within networks, researchers have developed Collective Remote Attestation (CRA) schemes [13][14][15][16][17][18][19][20][21][22][23][24][25][26][27][28]. These schemes are proficient at performing remote attestation for networks of IoT devices.…”

“…According to the types of attestation keys, CRAs can be categorized into two types: symmetric [13][14][15][16][17][18][19] and asymmetric [20][21][22][23][24]. Certain schemes, including SEDA [25], DARPA [26], ERASMUS [27], and SALAD [28], offer support for both symmetric and asymmetric cryptography. However, asymmetric schemes such as SANA [20], US-AID [21], ESDRA [22], and SARA [23] demand substantial resources, making them unsuitable for scenarios with resource constraints.…”

“…Centralized verification, exemplified by SAP [13] and ERASMUS [27], involves a remote verifier solely performing the integrity checks of all devices. In contrast, distributed verification involves either self-verification of device integrity (as in LISA [14], slimIoT [15], PADS [16], SCAPI [17], SALAD [28]) or verification by another device (as in SEDA [25], DARPA [26], SeED [18], HEALED [19]). This process necessitates a device to either store reference values or receive them from an attestation request, leading to increased Trusted Computing Base (TCB) requirements as these values must be securely stored in a write-protected area of the memory.…”

“…There is no need to store the attestation code and reference values in the TCB. A comparison of the TCB requirements of SDATA and other schemes [13][14][15][16][17][18][19][25][26][27][28] is presented in Table 1. (2) Efficient Use of Symmetric Aggregate Message Authentication Codes: SDATA uses symmetric aggregate message authentication codes for efficiency, reducing both the communication volume within the device network and the size of the attestation report.…”

SDATA: Symmetrical Device Identifier Composition Engine Complied Aggregate Trust Attestation

“…The related work [13][14][15][16][17][18][19][20][21][22][23][24][25][26][27][28] is illustrated in the introduction. Existing attestation methods are classified into symmetric and asymmetric categories.…”

“…These techniques aim to verify the integrity of these devices. Considering that IoT embedded devices often operate within networks, researchers have developed Collective Remote Attestation (CRA) schemes [13][14][15][16][17][18][19][20][21][22][23][24][25][26][27][28]. These schemes are proficient at performing remote attestation for networks of IoT devices.…”

“…According to the types of attestation keys, CRAs can be categorized into two types: symmetric [13][14][15][16][17][18][19] and asymmetric [20][21][22][23][24]. Certain schemes, including SEDA [25], DARPA [26], ERASMUS [27], and SALAD [28], offer support for both symmetric and asymmetric cryptography. However, asymmetric schemes such as SANA [20], US-AID [21], ESDRA [22], and SARA [23] demand substantial resources, making them unsuitable for scenarios with resource constraints.…”

“…Centralized verification, exemplified by SAP [13] and ERASMUS [27], involves a remote verifier solely performing the integrity checks of all devices. In contrast, distributed verification involves either self-verification of device integrity (as in LISA [14], slimIoT [15], PADS [16], SCAPI [17], SALAD [28]) or verification by another device (as in SEDA [25], DARPA [26], SeED [18], HEALED [19]). This process necessitates a device to either store reference values or receive them from an attestation request, leading to increased Trusted Computing Base (TCB) requirements as these values must be securely stored in a write-protected area of the memory.…”

“…There is no need to store the attestation code and reference values in the TCB. A comparison of the TCB requirements of SDATA and other schemes [13][14][15][16][17][18][19][25][26][27][28] is presented in Table 1. (2) Efficient Use of Symmetric Aggregate Message Authentication Codes: SDATA uses symmetric aggregate message authentication codes for efficiency, reducing both the communication volume within the device network and the size of the attestation report.…”

SDATA: Symmetrical Device Identifier Composition Engine Complied Aggregate Trust Attestation

LegIoT: Ledgered Trust Management Platform for IoT

HolA: Holistic and Autonomous Attestation for IoT Networks