Towards Systematic Design of Collective Remote Attestation Protocols

Nunes, Ivan De Oliveira; Dessouky, Ghada; Ibrahim, Ahmad; Rattanavipanon, Norrathep; Sadeghi, Ahmad‐Reza; Tsudik, Gene

doi:10.1109/icdcs.2019.00120

Cited by 7 publications

(5 citation statements)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The related work [13][14][15][16][17][18][19][20][21][22][23][24][25][26][27][28] is illustrated in the introduction. Existing attestation methods are classified into symmetric and asymmetric categories.…”

Section: Discussionmentioning

confidence: 99%

“…These techniques aim to verify the integrity of these devices. Considering that IoT embedded devices often operate within networks, researchers have developed Collective Remote Attestation (CRA) schemes [13][14][15][16][17][18][19][20][21][22][23][24][25][26][27][28]. These schemes are proficient at performing remote attestation for networks of IoT devices.…”

Section: Introductionmentioning

confidence: 99%

“…According to the types of attestation keys, CRAs can be categorized into two types: symmetric [13][14][15][16][17][18][19] and asymmetric [20][21][22][23][24]. Certain schemes, including SEDA [25], DARPA [26], ERASMUS [27], and SALAD [28], offer support for both symmetric and asymmetric cryptography.…”

Section: Introductionmentioning

confidence: 99%

“…Furthermore, existing symmetric CRAs can be broadly divided into two categories: centralized and distributed verification. Centralized verification, exemplified by SAP [13] and ERASMUS [27], involves a remote verifier solely performing the integrity checks of all devices. In contrast, distributed verification involves either self-verification of device integrity (as in LISA [14], slimIoT [15], PADS [16], SCAPI [17], SALAD [28]) or verification by another device (as in SEDA [25], DARPA [26], SeED [18], HEALED [19]).…”

Section: Introductionmentioning

confidence: 99%

“…There is no need to store the attestation code and reference values in the TCB. A comparison of the TCB requirements of SDATA and other schemes [13][14][15][16][17][18][19][25][26][27][28] is presented in Table 1. (2) Efficient Use of Symmetric Aggregate Message Authentication Codes: SDATA uses symmetric aggregate message authentication codes for efficiency, reducing both the communication volume within the device network and the size of the attestation report.…”

Section: Introductionmentioning

confidence: 99%

See 4 more Smart Citations

SDATA: Symmetrical Device Identifier Composition Engine Complied Aggregate Trust Attestation

Yu,

Huang

2024

Symmetry

View full text Add to dashboard Cite

Efficient safeguarding of the security of interconnected devices, which are often resource-constrained, can be achieved through collective remote attestation schemes. However, in existing schemes, the attestation keys are independent of the device configuration, leading to increased requirements for the trusted computing base. This paper introduces a symmetrical aggregate trust attestation that is compatible with devices adhering to the device identifier composition engine framework. The proposed scheme simplifies the trusted computing base requirements by generating an attestation key that is derived from the device configuration. Moreover, the scheme employs distributed aggregate message authentication codes to reduce both the communication volume within the device network and the size of the attestation report, thereby enhancing the aggregation efficiency. In addition, the scheme incorporates interactive authentication to accurately identify compromised devices.

show abstract

Section: Discussionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

SDATA: Symmetrical Device Identifier Composition Engine Complied Aggregate Trust Attestation

Yu,

Huang

2024

Symmetry

View full text Add to dashboard Cite

show abstract

Swarm Attestation

Dushku¹,

Dragoni²

2022

Encyclopedia of Cryptography, Security and Privacy

View full text Add to dashboard Cite

Collective Remote Attestation at the Internet of Things Scale: State-of-the-Art and Future Challenges

Ambrosin

Conti

Lazzeretti

et al. 2020

IEEE Commun. Surv. Tutorials

View full text Add to dashboard Cite

In recent years, the booming of Internet of Things (IoT) has populated the world with billions of smart devices that implement novel services and applications. The potential for cyberattacks on IoT systems have called for new solutions from the research community. Remote attestation is a widely used technique that allows a verifier to identify software compromise on a remote platform (called prover). Traditional challengeresponse remote attestation protocols between the verifier and a single prover face a severe scalability challenge when they are applied to large scale IoT systems. To tackle this issue, recently researchers have started developing attestation schemes, which we refer to as Collective Remote Attestation (CRA) schemes, that are capable of remotely performing attestation of large networks of IoT devices.In this paper, after providing the reader with a background on remote attestation, we survey and analyze existing CRA schemes. We present an analysis of their advantages and disadvantages, as well as of their effectiveness against a reference attacker model. We focus our attention on CRA schemes' characteristics and adversarial mitigation capabilities. We finally highlight open research issues and give possible directions for mitigating both the limitations of existing schemes, and new emerging challenges. We believe this work can help guiding the design of current and future proposals for CRA.

show abstract

Towards Systematic Design of Collective Remote Attestation Protocols

Cited by 7 publications

References 20 publications

SDATA: Symmetrical Device Identifier Composition Engine Complied Aggregate Trust Attestation

SDATA: Symmetrical Device Identifier Composition Engine Complied Aggregate Trust Attestation

Swarm Attestation

Collective Remote Attestation at the Internet of Things Scale: State-of-the-Art and Future Challenges

Contact Info

Product

Resources

About