Flexible Mechanisms for Remote Attestation
Remote attestation consists of generating evidence of a system’s integrity via measurements and reporting the evidence to a remote party for appraisal in a form that can be trusted. The parties that exchange information must agree on formats and protocols. We assert there is a large variety of patte...
Gespeichert in:
| Veröffentlicht in: | ACM transactions on privacy and security 2021-11, Vol.24 (4), p.1-23 |
|---|---|
| Hauptverfasser: | , , , , , |
| Format: | Artikel |
| Sprache: | eng |
| Online-Zugang: | Volltext |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | 23 |
|---|---|
| container_issue | 4 |
| container_start_page | 1 |
| container_title | ACM transactions on privacy and security |
| container_volume | 24 |
| creator | Helble, Sarah C. Kretz, Ian D. Loscocco, Peter A. Ramsdell, John D. Rowe, Paul D. Alexander, Perry |
| description | Remote attestation consists of generating evidence of a system’s integrity via measurements and reporting the evidence to a remote party for appraisal in a form that can be trusted. The parties that exchange information must agree on formats and protocols. We assert there is a large variety of patterns of interactions among appraisers and attesters of interest. Therefore, it is important to standardize on flexible mechanisms for remote attestation. We make our case by describing scenarios that require the exchange of evidence among multiple parties using a variety of message passing patterns. We show cases in which changes in the order of evidence collection result in important differences to what can be inferred by an appraiser. We argue that adding the ability to negotiate the appropriate kind of attestation allows for remote attestations that better adapt to a dynamically changing environment. Finally, we suggest a language-based solution to taming the complexity of specifying and negotiating attestation procedures. |
| doi_str_mv | 10.1145/3470535 |
| format | Article |
| fullrecord | <record><control><sourceid>crossref</sourceid><recordid>TN_cdi_crossref_primary_10_1145_3470535</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>10_1145_3470535</sourcerecordid><originalsourceid>FETCH-LOGICAL-c258t-5a7fc1f58a7236c0d478f90cf901cdac64b5c220659a21bc3af0d787460ef1a13</originalsourceid><addsrcrecordid>eNo9j81Kw0AURgex0FJLXyE7QYjeO7_JshRrhYogug43NzM0kjQyMwt9exWLi8N3Vh8cIdYIt4ja3CntwChzIRZSOyylcfry362di1VK7wCAtq61xoW42Q3-s28HXzx5PtKpT2MqwhSLFz9O2RebnH3KlPvpdCVmgYbkV-ddirfd_et2Xx6eHx63m0PJ0lS5NOQCYzAVOaksQ6ddFWrgH5A7Yqtbw1KCNTVJbFlRgM5VTlvwAQnVUlz__XKcUoo-NB-xHyl-NQjNb2VzrlTfcTFClA</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype></control><display><type>article</type><title>Flexible Mechanisms for Remote Attestation</title><source>ACM Digital Library Complete</source><creator>Helble, Sarah C. ; Kretz, Ian D. ; Loscocco, Peter A. ; Ramsdell, John D. ; Rowe, Paul D. ; Alexander, Perry</creator><creatorcontrib>Helble, Sarah C. ; Kretz, Ian D. ; Loscocco, Peter A. ; Ramsdell, John D. ; Rowe, Paul D. ; Alexander, Perry</creatorcontrib><description>Remote attestation consists of generating evidence of a system’s integrity via measurements and reporting the evidence to a remote party for appraisal in a form that can be trusted. The parties that exchange information must agree on formats and protocols. We assert there is a large variety of patterns of interactions among appraisers and attesters of interest. Therefore, it is important to standardize on flexible mechanisms for remote attestation. We make our case by describing scenarios that require the exchange of evidence among multiple parties using a variety of message passing patterns. We show cases in which changes in the order of evidence collection result in important differences to what can be inferred by an appraiser. We argue that adding the ability to negotiate the appropriate kind of attestation allows for remote attestations that better adapt to a dynamically changing environment. Finally, we suggest a language-based solution to taming the complexity of specifying and negotiating attestation procedures.</description><identifier>ISSN: 2471-2566</identifier><identifier>EISSN: 2471-2574</identifier><identifier>DOI: 10.1145/3470535</identifier><language>eng</language><ispartof>ACM transactions on privacy and security, 2021-11, Vol.24 (4), p.1-23</ispartof><lds50>peer_reviewed</lds50><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed><citedby>FETCH-LOGICAL-c258t-5a7fc1f58a7236c0d478f90cf901cdac64b5c220659a21bc3af0d787460ef1a13</citedby><cites>FETCH-LOGICAL-c258t-5a7fc1f58a7236c0d478f90cf901cdac64b5c220659a21bc3af0d787460ef1a13</cites><orcidid>0000-0002-5387-9157</orcidid></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><link.rule.ids>314,776,780,27901,27902</link.rule.ids></links><search><creatorcontrib>Helble, Sarah C.</creatorcontrib><creatorcontrib>Kretz, Ian D.</creatorcontrib><creatorcontrib>Loscocco, Peter A.</creatorcontrib><creatorcontrib>Ramsdell, John D.</creatorcontrib><creatorcontrib>Rowe, Paul D.</creatorcontrib><creatorcontrib>Alexander, Perry</creatorcontrib><title>Flexible Mechanisms for Remote Attestation</title><title>ACM transactions on privacy and security</title><description>Remote attestation consists of generating evidence of a system’s integrity via measurements and reporting the evidence to a remote party for appraisal in a form that can be trusted. The parties that exchange information must agree on formats and protocols. We assert there is a large variety of patterns of interactions among appraisers and attesters of interest. Therefore, it is important to standardize on flexible mechanisms for remote attestation. We make our case by describing scenarios that require the exchange of evidence among multiple parties using a variety of message passing patterns. We show cases in which changes in the order of evidence collection result in important differences to what can be inferred by an appraiser. We argue that adding the ability to negotiate the appropriate kind of attestation allows for remote attestations that better adapt to a dynamically changing environment. Finally, we suggest a language-based solution to taming the complexity of specifying and negotiating attestation procedures.</description><issn>2471-2566</issn><issn>2471-2574</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2021</creationdate><recordtype>article</recordtype><recordid>eNo9j81Kw0AURgex0FJLXyE7QYjeO7_JshRrhYogug43NzM0kjQyMwt9exWLi8N3Vh8cIdYIt4ja3CntwChzIRZSOyylcfry362di1VK7wCAtq61xoW42Q3-s28HXzx5PtKpT2MqwhSLFz9O2RebnH3KlPvpdCVmgYbkV-ddirfd_et2Xx6eHx63m0PJ0lS5NOQCYzAVOaksQ6ddFWrgH5A7Yqtbw1KCNTVJbFlRgM5VTlvwAQnVUlz__XKcUoo-NB-xHyl-NQjNb2VzrlTfcTFClA</recordid><startdate>20211101</startdate><enddate>20211101</enddate><creator>Helble, Sarah C.</creator><creator>Kretz, Ian D.</creator><creator>Loscocco, Peter A.</creator><creator>Ramsdell, John D.</creator><creator>Rowe, Paul D.</creator><creator>Alexander, Perry</creator><scope>AAYXX</scope><scope>CITATION</scope><orcidid>https://orcid.org/0000-0002-5387-9157</orcidid></search><sort><creationdate>20211101</creationdate><title>Flexible Mechanisms for Remote Attestation</title><author>Helble, Sarah C. ; Kretz, Ian D. ; Loscocco, Peter A. ; Ramsdell, John D. ; Rowe, Paul D. ; Alexander, Perry</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c258t-5a7fc1f58a7236c0d478f90cf901cdac64b5c220659a21bc3af0d787460ef1a13</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2021</creationdate><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Helble, Sarah C.</creatorcontrib><creatorcontrib>Kretz, Ian D.</creatorcontrib><creatorcontrib>Loscocco, Peter A.</creatorcontrib><creatorcontrib>Ramsdell, John D.</creatorcontrib><creatorcontrib>Rowe, Paul D.</creatorcontrib><creatorcontrib>Alexander, Perry</creatorcontrib><collection>CrossRef</collection><jtitle>ACM transactions on privacy and security</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Helble, Sarah C.</au><au>Kretz, Ian D.</au><au>Loscocco, Peter A.</au><au>Ramsdell, John D.</au><au>Rowe, Paul D.</au><au>Alexander, Perry</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>Flexible Mechanisms for Remote Attestation</atitle><jtitle>ACM transactions on privacy and security</jtitle><date>2021-11-01</date><risdate>2021</risdate><volume>24</volume><issue>4</issue><spage>1</spage><epage>23</epage><pages>1-23</pages><issn>2471-2566</issn><eissn>2471-2574</eissn><abstract>Remote attestation consists of generating evidence of a system’s integrity via measurements and reporting the evidence to a remote party for appraisal in a form that can be trusted. The parties that exchange information must agree on formats and protocols. We assert there is a large variety of patterns of interactions among appraisers and attesters of interest. Therefore, it is important to standardize on flexible mechanisms for remote attestation. We make our case by describing scenarios that require the exchange of evidence among multiple parties using a variety of message passing patterns. We show cases in which changes in the order of evidence collection result in important differences to what can be inferred by an appraiser. We argue that adding the ability to negotiate the appropriate kind of attestation allows for remote attestations that better adapt to a dynamically changing environment. Finally, we suggest a language-based solution to taming the complexity of specifying and negotiating attestation procedures.</abstract><doi>10.1145/3470535</doi><tpages>23</tpages><orcidid>https://orcid.org/0000-0002-5387-9157</orcidid><oa>free_for_read</oa></addata></record> |
| fulltext | fulltext |
| identifier | ISSN: 2471-2566 |
| ispartof | ACM transactions on privacy and security, 2021-11, Vol.24 (4), p.1-23 |
| issn | 2471-2566 2471-2574 |
| language | eng |
| recordid | cdi_crossref_primary_10_1145_3470535 |
| source | ACM Digital Library Complete |
| title | Flexible Mechanisms for Remote Attestation |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-30T16%3A05%3A29IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-crossref&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=Flexible%20Mechanisms%20for%20Remote%20Attestation&rft.jtitle=ACM%20transactions%20on%20privacy%20and%20security&rft.au=Helble,%20Sarah%20C.&rft.date=2021-11-01&rft.volume=24&rft.issue=4&rft.spage=1&rft.epage=23&rft.pages=1-23&rft.issn=2471-2566&rft.eissn=2471-2574&rft_id=info:doi/10.1145/3470535&rft_dat=%3Ccrossref%3E10_1145_3470535%3C/crossref%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true |