An Infrastructure for Faithful Execution of Remote Attestation Protocols

被引:5
|
作者
Petz, Adam [1 ]
Alexander, Perry [1 ]
机构
[1] Univ Kansas, Informat & Telecommun Technol Ctr, Lawrence, KS 66045 USA
来源
NASA FORMAL METHODS (NFM 2021) | 2021年 / 12673卷
关键词
Remote attestation; Verification; Domain specific languages; FRAMEWORK;
D O I
10.1007/978-3-030-76384-8_17
中图分类号
TP39 [计算机的应用];
学科分类号
081203 ; 0835 ;
摘要
Remote attestation is a technology for establishing trust in a remote computing system. Copland is a domain-specific language for specifying attestation protocols that operate in diverse, layered measurement topologies. An accompanying reference semantics characterizes attestation-relevant system events and bundling of cryptographic evidence. In this work we formally define and verify the Copland Compiler and Copland Virtual Machine for executing Copland protocols. The compiler and vm are implemented as monadic, functional programs in the Coq proof assistant and verified with respect to the Copland reference semantics. In addition we introduce the Attestation Manager Monad as an environment for managing attestation freshness, binding results of Copland protocols to variables, and appraising evidence results. These components lay the foundation for a verified attestation stack.
引用
收藏
页码:268 / 286
页数:19
相关论文
共 50 条
  • [1] Towards Heterogeneous Remote Attestation Protocols
    Wagner, Paul Georg
    Beyerer, Juergen
    [J]. SECRYPT : PROCEEDINGS OF THE 19TH INTERNATIONAL CONFERENCE ON SECURITY AND CRYPTOGRAPHY, 2022, : 586 - 591
  • [2] Remote Attestation on Function Execution (Work-in-Progress)
    Gu, Liang
    Cheng, Yueqiang
    Ding, Xuhua
    Deng, Robert H.
    Guo, Yao
    Shao, Weizhong
    [J]. TRUSTED SYSTEMS, 2010, 6163 : 60 - +
  • [3] Remote Attestation Assurance Arguments for Trusted Execution Environments
    Usman, Ahmad B.
    Cole, Nigel
    Asplund, Mikael
    Boeira, Felipe
    Vestlund, Christian
    [J]. PROCEEDINGS OF THE 2023 ACM WORKSHOP ON SECURE AND TRUSTWORTHY CYBER-PHYSICAL SYSTEMS, SAT-CPS 2023, 2023, : 33 - 42
  • [4] Towards Systematic Design of Collective Remote Attestation Protocols
    Nunes, Ivan De Oliveira
    Dessouky, Ghada
    Ibrahim, Ahmad
    Rattanavipanon, Norrathep
    Sadeghi, Ahmad-Reza
    Tsudik, Gene
    [J]. 2019 39TH IEEE INTERNATIONAL CONFERENCE ON DISTRIBUTED COMPUTING SYSTEMS (ICDCS 2019), 2019, : 1188 - 1198
  • [5] πRA: A π-calculus for Verifying Protocols that Use Remote Attestation
    Lanckriet, Emiel
    Busi, Matteo
    Devriese, Dominique
    [J]. 2023 IEEE 36TH COMPUTER SECURITY FOUNDATIONS SYMPOSIUM, CSF, 2023, : 537 - 551
  • [6] Remote Attestation of Software and Execution-Environment in Modern Machines
    Kiperberg, Michael
    Resh, Amit
    Zaidenberg, Nezer J.
    [J]. 2015 IEEE 2ND INTERNATIONAL CONFERENCE ON CYBER SECURITY AND CLOUD COMPUTING (CSCLOUD), 2015, : 335 - 341
  • [7] Symbolic modelling of remote attestation protocols for device and app integrity on Android
    Aldoseri, Abdulla
    Chothia, Tom
    Moreira, Jose
    Oswald, David
    [J]. PROCEEDINGS OF THE 2023 ACM ASIA CONFERENCE ON COMPUTER AND COMMUNICATIONS SECURITY, ASIA CCS 2023, 2023, : 218 - 231
  • [8] Credibility Attestation of Property Remote Attestation Method
    Cui Yan-Li
    Zhang Xing
    [J]. 2009 SECOND INTERNATIONAL CONFERENCE ON FUTURE INFORMATION TECHNOLOGY AND MANAGEMENT ENGINEERING, FITME 2009, 2009, : 254 - +
  • [9] A logic programming infrastructure for remote execution, mobile code and agents
    Tarau, P
    Dahl, V
    DeBosschere, K
    [J]. SIXTH IEEE WORKSHOPS ON ENABLING TECHNOLOGIES: INFRASTRUCTURE FOR COLLABORATIVE ENTERPRISES, PROCEEDINGS, 1997, : 106 - 111
  • [10] Principles of remote attestation
    George Coker
    Joshua Guttman
    Peter Loscocco
    Amy Herzog
    Jonathan Millen
    Brian O’Hanlon
    John Ramsdell
    Ariel Segall
    Justin Sheehy
    Brian Sniffen
    [J]. International Journal of Information Security, 2011, 10 : 63 - 81
12345