This paper provides a systematic treatment of Remote Attestation, starting with a precise definition of the desired service and proceeding to its systematic deconstruction into necessary and sufficient properties. These properties are, in turn, mapped into a minimal collection of hardware and software components that results in secure Remote Attestation. One distinguishing feature of this line of research is the need to prove (or, at least argue) architectural minimality; this is rarely encountered in security research. This work also offers some insights into vulnerabilities of certain prior techniques and provides a promising platform for attaining more advanced security services and guarantees.
Category / Keywords: applications/Remote Attestation, Embedded Devices, Architectural Minimality, Authentication Publication Info: N/A Date: received 20 Dec 2012, last revised 27 Dec 2012 Contact author: gene tsudik at uci edu Available formats: PDF | BibTeX Citation Version: 20121227:233719 (All versions of this report) Discussion forum: Show discussion | Start new discussion