Paper 2018/031

Secure Remote Attestation

Markus Jakobsson

Abstract

More than ten years ago, a devastating data substitution attack was shown to successfully compromise all previously proposed remote attestation techniques. In fact, the authors went further than simply attacking previously proposed methods: they called into question whether it is theoretically possible for remote attestation methods to exist in face of their attack. Subsequently, it has been shown that it is possible, by relying on self-modifying code. We show that it is possible to create remote attestation that is secure against all data substitution attacks, without relying on self-modifying code. Our proposed method relies on a construction of the checksum process that forces frequent L2 cache overflows if any data substitution attack takes place.

Metadata
Available format(s)
PDF
Category
Applications
Publication info
Preprint. MINOR revision.
Contact author(s)
markus jakobsson @ gmail com
History
2018-01-08: received
Short URL
https://ia.cr/2018/031
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2018/031,
      author = {Markus Jakobsson},
      title = {Secure Remote Attestation},
      howpublished = {Cryptology {ePrint} Archive, Paper 2018/031},
      year = {2018},
      url = {https://eprint.iacr.org/2018/031}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.