Cryptology ePrint Archive: Report 2015/654

DAA-TZ: An Efficient DAA Scheme for Mobile Devices using ARM TrustZone

Bo Yang and Kang Yang and Yu Qin and Zhenfeng Zhang and Dengguo Feng

Abstract: Direct Anonymous Attestation (DAA) has been studied for applying to mobile devices based on ARM TrustZone. However, current solutions bring in extra performance overheads and security risks when adapting existing DAA schemes originally designed for PC platform. In this paper, we propose a complete and efficient DAA scheme (DAA-TZ) specifically designed for mobile devices using TrustZone. By considering the application scenarios, DAA-TZ extends the interactive model of original DAA and provides anonymity for a device and its user against remote service providers. The proposed scheme requires only one-time switch of TrustZone for signing phase and elaborately takes pre-computation into account. Consequently, the frequent on-line signing just needs at most three exponentiations on elliptic curve. Moreover, we present the architecture for trusted mobile devices. The issues about key derivation and sensitive data management relying on a root of trust from SRAM Physical Unclonable Function (PUF) are discussed. We implement a prototype system and execute DAA-TZ using MNT and BN curves with different security levels. The comparison result and performance evaluation indicate that our scheme meets the demanding requirement of mobile users in respects of both security and efficiency.

Category / Keywords: cryptographic protocols / DAA, Privacy, Mobile Devices, ARM TrustZone, PUF

Original Publication (with minor differences): TRUST 2015

Date: received 1 Jul 2015

Contact author: yangbo at tca iscas ac cn

Available format(s): PDF | BibTeX Citation

Version: 20150702:075642 (All versions of this report)

Short URL:

[ Cryptology ePrint archive ]