Paper 2017/1246

Verification of FPGA-augmented trusted computing mechanisms based on Applied Pi Calculus

Alessandro Cilardo and Andrea Primativo

Abstract

Trusted computing technologies may play a key role for cloud security as they enable users to relax the trustworthiness assumptions about the provider that operates the physical cloud infrastructure. This work focuses on the possibility of embodying Field-Programmable Gate Array (FPGA) devices in cloud-based infrastructures, where they can benefit compute-intensive workloads like data compression, machine learning, data encoding, etc. The focus is on the implications for cloud applications with security requirements. We introduce a general architecture model of a CPU+FPGA platform pinpointing key roles and specific assumptions that are relevant for the trusted computing mechanisms and the associated security properties. In addition, we formally verified the proposed solution based on Applied Pi Calculus, a descendant of Pi Calculus, that introduces constructs allowing the symbolic description of cryptographic primitives. The verification phase was automated by means of ProVerif, a tool taking as input a model expressed in Applied Pi Calculus along with some queries and annotations that define security properties to be proved or denied. The results of the analysis confirmed that the properties defined in our work hold under the Dolev Yao attacker model.

Metadata
Available format(s)
PDF
Category
Implementation
Publication info
Preprint. MAJOR revision.
Keywords
Trusted Computing
Contact author(s)
acilardo @ unina it
History
2017-12-30: received
Short URL
https://ia.cr/2017/1246
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2017/1246,
      author = {Alessandro Cilardo and Andrea Primativo},
      title = {Verification of {FPGA}-augmented trusted computing mechanisms based on Applied Pi Calculus},
      howpublished = {Cryptology {ePrint} Archive, Paper 2017/1246},
      year = {2017},
      url = {https://eprint.iacr.org/2017/1246}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.