Sökning: onr:"swepub:oai:DiVA.org:liu-201069" >
Remote Attestation ...
Remote Attestation Assurance Arguments for Trusted Execution Environments
-
- Usman, Ahmad, Doktorand (författare)
- Linköpings universitet,Programvara och system,Tekniska fakulteten
-
- Cole, Nigel (författare)
- Linköpings universitet
-
- Asplund, Mikael, 1981- (författare)
- Linköpings universitet,Programvara och system,Tekniska fakulteten
-
visa fler...
-
- Boeira, Felipe, 1992- (författare)
- Linköpings universitet,Programvara och system,Tekniska fakulteten
-
- Vestlund, Christian (författare)
- Sectra Commun AB, Linkoping, Sweden
-
visa färre...
-
(creator_code:org_t)
- ASSOC COMPUTING MACHINERY, 2023
- 2023
- Engelska.
-
Ingår i: PROCEEDINGS OF THE 2023 ACM WORKSHOP ON SECURE AND TRUSTWORTHY CYBER-PHYSICAL SYSTEMS, SAT-CPS 2023. - : ASSOC COMPUTING MACHINERY. - 9798400701009 ; , s. 33-42
- Relaterad länk:
-
https://doi.org/10.1...
-
visa fler...
-
https://liu.diva-por... (primary) (Raw object)
-
https://urn.kb.se/re...
-
https://doi.org/10.1...
-
visa färre...
Abstract
Ämnesord
Stäng
- Remote attestation (RA) is emerging as an important security mechanism for cyber-physical systems with strict security requirements. Trusted computing at large and Trusted Execution Environments (TEEs) in particular have been identified as key technologies to enable RA since they ideally allow retaining some element of control over remote devices despite them being compromised at the OS level. Unfortunately, sometimes it is claimed that TEEs provide RA support without really substantiating how this support is provided. In this paper we build the assurance arguments for RA to carefully map how secure RA depends on underlying security properties and how these in turn can be provided by TEE capabilities. We base our security analysis of RA on existing literature on security requirements for RA and use Goal Structuring Notation (GSN) as the method to build the security arguments. Our analysis identifies the set of TEE properties (as described in the GlobalPlatform standard) that are needed to support RA, and which goals that cannot be mapped to TEE implementations, and therefore, require other forms of evidence for RA to be trusted at the top level.
Ämnesord
- TEKNIK OCH TEKNOLOGIER -- Elektroteknik och elektronik -- Datorsystem (hsv//swe)
- ENGINEERING AND TECHNOLOGY -- Electrical Engineering, Electronic Engineering, Information Engineering -- Computer Systems (hsv//eng)
Nyckelord
- Remote Attestation; Trusted Execution Environments; Goal Structuring Notation; Assurance; GlobalPlatform; CPS
Publikations- och innehållstyp
- ref (ämneskategori)
- kon (ämneskategori)
Hitta via bibliotek
Till lärosätets databas