Abstract

Remote attestation is the activity of making a claim about properties of a target by supplying evidence to an appraiser over a network. We identify five central principles to guide development of attestation systems. We argue that (i) attestation must be able to deliver temporally fresh evidence; (ii) comprehensive information about the target should be accessible; (iii) the target, or its owner, should be able to constrain disclosure of information about the target; (iv) attestation claims should have explicit semantics to allow decisions to be derived from several claims; and (v) the underlying attestation mechanism must be trustworthy. We illustrate how to acquire evidence from a running system, and how to transport it via protocols to remote appraisers. We propose an architecture for attestation guided by these principles. Virtualized platforms, which are increasingly well supported on stock hardware, provide a natural basis for our attestation architecture.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Attestation: Evidence and Trust
George Coker ... Brian Sniffen
-
George Coker, et. al.George Coker ... Brian Sniffen
01 Jan 2008
Real-Time Remote Attestation with Privacy Protection
Aimin Yu ... Dengguo Feng
-
Aimin Yu, et. al.Aimin Yu ... Dengguo Feng
01 Jan 2009
Trusted Isolation Environment: An Attestation Architecture with Usage Control Model
Anbang Ruan ... Qingni Shen
-
Anbang Ruan, et. al.Anbang Ruan ... Qingni Shen
01 Jan 2009
A remote attestation model in distributed environment
Ning Wang ... Zhen-Qiang Wu
-
Ning Wang, et. al.Ning Wang ... Zhen-Qiang Wu
01 Oct 2010
View more papers

More From: International Journal of Information Security

Paper Title
Journal
Date
Author
XAIRF-WFP: a novel XAI-based random forest classifier for advanced email spam detection
Mohamed Aly Bouke ... Azizol Abdullah
International Journal of Information Security | VOL. 24
Mohamed Aly Bouke, et. al.Mohamed Aly Bouke ... Azizol Abdullah
30 Oct 2024
Autonomous intrusion detection for IoT: a decentralized and privacy preserving approach
Vitalina Holubenko ... Paulo Silva
International Journal of Information Security | VOL. 24
Vitalina Holubenko, et. al.Vitalina Holubenko ... Paulo Silva
30 Oct 2024
Citizens’ engagement with cybersecurity measures in Bangladesh: a cross-sectional study
Md Shafiul Alam ... Syed Shah Alam
International Journal of Information Security | VOL. 24
Md Shafiul Alam, et. al.Md Shafiul Alam ... Syed Shah Alam
30 Oct 2024
HOMOGRAPH: a novel textual adversarial attack architecture to unmask the susceptibility of linguistic acceptability classifiers
Sajal Aggarwal ... Dinesh Kumar Vishwakarma
International Journal of Information Security | VOL. 24
Sajal Aggarwal, et. al.Sajal Aggarwal ... Dinesh Kumar Vishwakarma
30 Oct 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.