HistoTrust: Ethereum-Based Attestation of a Data History Built with OP-TEE and TPM
Device- or user-centric system architectures allow everyone to manage their personal or confidential data. But how to provide the trust required between the stakeholders of a given ecosystem to work together, each preserving their interest and their business? HistoTrust introduces a solution to this...
Gespeichert in:
| Hauptverfasser: | , , , , , |
|---|---|
| Format: | Buchkapitel |
| Sprache: | eng |
| Schlagworte: | |
| Online-Zugang: | Volltext |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | 145 |
|---|---|
| container_issue | |
| container_start_page | 130 |
| container_title | |
| container_volume | 13291 |
| creator | Paulin, Dylan Hennebert, Christine Franco-Rondisson, Thibault Jayles, Romain Loubier, Thomas Collado, Raphaël |
| description | Device- or user-centric system architectures allow everyone to manage their personal or confidential data. But how to provide the trust required between the stakeholders of a given ecosystem to work together, each preserving their interest and their business? HistoTrust introduces a solution to this problem. A system architecture separating the data belonging to each stakeholder and the cryptographic proofs (attestations) on their history is implemented. An Ethereum ledger is deployed to maintain the history of the attestations, thus guaranteeing their tamper-resistance, their timestamp and their order. The ledger allows these attestations to be shared between the stakeholders in order to create trust without revealing secret or critical data. In each IoT device, the root-of-trust secrets used to attest the data produced are protected at storage in a TPM ST33 and during execution within an ARM Cortex-A7 TrustZone. The designed solution aims to be resilient, robust to software attacks and to present a high level of protection against side-channel attacks and fault injections. Furthermore, the real-time constraints of an embedded industrial application are respected. The integration of the security measures does not impact the performance in use. |
| doi_str_mv | 10.1007/978-3-031-08147-7_9 |
| format | Book Chapter |
| fullrecord | <record><control><sourceid>proquest_hal_p</sourceid><recordid>TN_cdi_hal_primary_oai_HAL_cea_04813608v1</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>EBC7017505_135_142</sourcerecordid><originalsourceid>FETCH-LOGICAL-h206t-bd1a774f2fb56559f12267b5528fb0ff8c1064a2bce9d15bcc6532a383c6c4e33</originalsourceid><addsrcrecordid>eNo1kE1vEzEQhs2nSEt-ARdfORhmPP7Y5ZaWQJCCWqFwtryOl11Is6ntgPrvcRM4jEYz87xzeBh7g_AOAez71jaCBBAKaFBZYV37hF1QXZxmfMpmaBAFkWqfsXnF_98MPGczIJCitYpesgskgpYkKv2KzXP-CQDSEjbWzNi31ZjLtEnHXD7wZRliisc7ceVz3PJFKTEXX8Zpz6eee_7RF89PgfTAr47jrvA_Yxn4za3YLJfc77d8c_v1NXvR-12O83_9kn3_tNxcr8T65vOX68VaDBJMEd0WvbWql32njdZtj1Ia22ktm76Dvm8CglFediG2W9RdCEaT9NRQMEFFokv29vx38Dt3SOOdTw9u8qNbLdYuRO9ANUgGmt9YWTyzuYL7HzG5bpp-ZYfgHm27qs-RqwLdya6rm5pR58whTffHasLFx1CI-5L8Lgz-UGLKzgJaDdoh1VKS_gK7LHrk</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>book_chapter</recordtype><pqid>EBC7017505_135_142</pqid></control><display><type>book_chapter</type><title>HistoTrust: Ethereum-Based Attestation of a Data History Built with OP-TEE and TPM</title><source>Springer Books</source><creator>Paulin, Dylan ; Hennebert, Christine ; Franco-Rondisson, Thibault ; Jayles, Romain ; Loubier, Thomas ; Collado, Raphaël</creator><contributor>Garcia-Alfaro, Joaquin ; Yaich, Reda ; Dupont, Benoît ; Laurent, Maryline ; Aïmeur, Esma</contributor><creatorcontrib>Paulin, Dylan ; Hennebert, Christine ; Franco-Rondisson, Thibault ; Jayles, Romain ; Loubier, Thomas ; Collado, Raphaël ; Garcia-Alfaro, Joaquin ; Yaich, Reda ; Dupont, Benoît ; Laurent, Maryline ; Aïmeur, Esma</creatorcontrib><description>Device- or user-centric system architectures allow everyone to manage their personal or confidential data. But how to provide the trust required between the stakeholders of a given ecosystem to work together, each preserving their interest and their business? HistoTrust introduces a solution to this problem. A system architecture separating the data belonging to each stakeholder and the cryptographic proofs (attestations) on their history is implemented. An Ethereum ledger is deployed to maintain the history of the attestations, thus guaranteeing their tamper-resistance, their timestamp and their order. The ledger allows these attestations to be shared between the stakeholders in order to create trust without revealing secret or critical data. In each IoT device, the root-of-trust secrets used to attest the data produced are protected at storage in a TPM ST33 and during execution within an ARM Cortex-A7 TrustZone. The designed solution aims to be resilient, robust to software attacks and to present a high level of protection against side-channel attacks and fault injections. Furthermore, the real-time constraints of an embedded industrial application are respected. The integration of the security measures does not impact the performance in use.</description><identifier>ISSN: 0302-9743</identifier><identifier>ISBN: 9783031081460</identifier><identifier>ISBN: 3031081463</identifier><identifier>ISBN: 3031081471</identifier><identifier>ISBN: 9783031081477</identifier><identifier>EISSN: 1611-3349</identifier><identifier>EISBN: 3031081471</identifier><identifier>EISBN: 9783031081477</identifier><identifier>DOI: 10.1007/978-3-031-08147-7_9</identifier><identifier>OCLC: 1330932145</identifier><identifier>LCCallNum: QA76.9.A25</identifier><language>eng</language><publisher>Switzerland: Springer International Publishing AG</publisher><subject>Attestation ; Computer Science ; Cryptography and Security ; Data history ; Embedded industrial application ; Engineering Sciences ; IoT ; Ledger ; OP-TEE ; Real-time performance ; Secure hardware ; TPM ; Trust</subject><ispartof>Foundations and Practice of Security, 2022, Vol.13291, p.130-145</ispartof><rights>Springer Nature Switzerland AG 2022</rights><rights>Distributed under a Creative Commons Attribution 4.0 International License</rights><lds50>peer_reviewed</lds50><woscitedreferencessubscribed>false</woscitedreferencessubscribed><orcidid>0000-0002-9170-6134</orcidid><relation>Lecture Notes in Computer Science</relation></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Uhttps://ebookcentral.proquest.com/covers/7017505-l.jpg</thumbnail><linktopdf>$$Uhttps://link.springer.com/content/pdf/10.1007/978-3-031-08147-7_9$$EPDF$$P50$$Gspringer$$H</linktopdf><linktohtml>$$Uhttps://link.springer.com/10.1007/978-3-031-08147-7_9$$EHTML$$P50$$Gspringer$$H</linktohtml><link.rule.ids>230,775,776,780,789,881,27902,38232,41418,42487</link.rule.ids><backlink>$$Uhttps://cea.hal.science/cea-04813608$$DView record in HAL$$Hfree_for_read</backlink></links><search><contributor>Garcia-Alfaro, Joaquin</contributor><contributor>Yaich, Reda</contributor><contributor>Dupont, Benoît</contributor><contributor>Laurent, Maryline</contributor><contributor>Aïmeur, Esma</contributor><creatorcontrib>Paulin, Dylan</creatorcontrib><creatorcontrib>Hennebert, Christine</creatorcontrib><creatorcontrib>Franco-Rondisson, Thibault</creatorcontrib><creatorcontrib>Jayles, Romain</creatorcontrib><creatorcontrib>Loubier, Thomas</creatorcontrib><creatorcontrib>Collado, Raphaël</creatorcontrib><title>HistoTrust: Ethereum-Based Attestation of a Data History Built with OP-TEE and TPM</title><title>Foundations and Practice of Security</title><description>Device- or user-centric system architectures allow everyone to manage their personal or confidential data. But how to provide the trust required between the stakeholders of a given ecosystem to work together, each preserving their interest and their business? HistoTrust introduces a solution to this problem. A system architecture separating the data belonging to each stakeholder and the cryptographic proofs (attestations) on their history is implemented. An Ethereum ledger is deployed to maintain the history of the attestations, thus guaranteeing their tamper-resistance, their timestamp and their order. The ledger allows these attestations to be shared between the stakeholders in order to create trust without revealing secret or critical data. In each IoT device, the root-of-trust secrets used to attest the data produced are protected at storage in a TPM ST33 and during execution within an ARM Cortex-A7 TrustZone. The designed solution aims to be resilient, robust to software attacks and to present a high level of protection against side-channel attacks and fault injections. Furthermore, the real-time constraints of an embedded industrial application are respected. The integration of the security measures does not impact the performance in use.</description><subject>Attestation</subject><subject>Computer Science</subject><subject>Cryptography and Security</subject><subject>Data history</subject><subject>Embedded industrial application</subject><subject>Engineering Sciences</subject><subject>IoT</subject><subject>Ledger</subject><subject>OP-TEE</subject><subject>Real-time performance</subject><subject>Secure hardware</subject><subject>TPM</subject><subject>Trust</subject><issn>0302-9743</issn><issn>1611-3349</issn><isbn>9783031081460</isbn><isbn>3031081463</isbn><isbn>3031081471</isbn><isbn>9783031081477</isbn><isbn>3031081471</isbn><isbn>9783031081477</isbn><fulltext>true</fulltext><rsrctype>book_chapter</rsrctype><creationdate>2022</creationdate><recordtype>book_chapter</recordtype><recordid>eNo1kE1vEzEQhs2nSEt-ARdfORhmPP7Y5ZaWQJCCWqFwtryOl11Is6ntgPrvcRM4jEYz87xzeBh7g_AOAez71jaCBBAKaFBZYV37hF1QXZxmfMpmaBAFkWqfsXnF_98MPGczIJCitYpesgskgpYkKv2KzXP-CQDSEjbWzNi31ZjLtEnHXD7wZRliisc7ceVz3PJFKTEXX8Zpz6eee_7RF89PgfTAr47jrvA_Yxn4za3YLJfc77d8c_v1NXvR-12O83_9kn3_tNxcr8T65vOX68VaDBJMEd0WvbWql32njdZtj1Ia22ktm76Dvm8CglFediG2W9RdCEaT9NRQMEFFokv29vx38Dt3SOOdTw9u8qNbLdYuRO9ANUgGmt9YWTyzuYL7HzG5bpp-ZYfgHm27qs-RqwLdya6rm5pR58whTffHasLFx1CI-5L8Lgz-UGLKzgJaDdoh1VKS_gK7LHrk</recordid><startdate>2022</startdate><enddate>2022</enddate><creator>Paulin, Dylan</creator><creator>Hennebert, Christine</creator><creator>Franco-Rondisson, Thibault</creator><creator>Jayles, Romain</creator><creator>Loubier, Thomas</creator><creator>Collado, Raphaël</creator><general>Springer International Publishing AG</general><general>Springer International Publishing</general><scope>FFUUA</scope><scope>1XC</scope><orcidid>https://orcid.org/0000-0002-9170-6134</orcidid></search><sort><creationdate>2022</creationdate><title>HistoTrust: Ethereum-Based Attestation of a Data History Built with OP-TEE and TPM</title><author>Paulin, Dylan ; Hennebert, Christine ; Franco-Rondisson, Thibault ; Jayles, Romain ; Loubier, Thomas ; Collado, Raphaël</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-h206t-bd1a774f2fb56559f12267b5528fb0ff8c1064a2bce9d15bcc6532a383c6c4e33</frbrgroupid><rsrctype>book_chapters</rsrctype><prefilter>book_chapters</prefilter><language>eng</language><creationdate>2022</creationdate><topic>Attestation</topic><topic>Computer Science</topic><topic>Cryptography and Security</topic><topic>Data history</topic><topic>Embedded industrial application</topic><topic>Engineering Sciences</topic><topic>IoT</topic><topic>Ledger</topic><topic>OP-TEE</topic><topic>Real-time performance</topic><topic>Secure hardware</topic><topic>TPM</topic><topic>Trust</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Paulin, Dylan</creatorcontrib><creatorcontrib>Hennebert, Christine</creatorcontrib><creatorcontrib>Franco-Rondisson, Thibault</creatorcontrib><creatorcontrib>Jayles, Romain</creatorcontrib><creatorcontrib>Loubier, Thomas</creatorcontrib><creatorcontrib>Collado, Raphaël</creatorcontrib><collection>ProQuest Ebook Central - Book Chapters - Demo use only</collection><collection>Hyper Article en Ligne (HAL)</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Paulin, Dylan</au><au>Hennebert, Christine</au><au>Franco-Rondisson, Thibault</au><au>Jayles, Romain</au><au>Loubier, Thomas</au><au>Collado, Raphaël</au><au>Garcia-Alfaro, Joaquin</au><au>Yaich, Reda</au><au>Dupont, Benoît</au><au>Laurent, Maryline</au><au>Aïmeur, Esma</au><format>book</format><genre>bookitem</genre><ristype>CHAP</ristype><atitle>HistoTrust: Ethereum-Based Attestation of a Data History Built with OP-TEE and TPM</atitle><btitle>Foundations and Practice of Security</btitle><seriestitle>Lecture Notes in Computer Science</seriestitle><date>2022</date><risdate>2022</risdate><volume>13291</volume><spage>130</spage><epage>145</epage><pages>130-145</pages><issn>0302-9743</issn><eissn>1611-3349</eissn><isbn>9783031081460</isbn><isbn>3031081463</isbn><isbn>3031081471</isbn><isbn>9783031081477</isbn><eisbn>3031081471</eisbn><eisbn>9783031081477</eisbn><abstract>Device- or user-centric system architectures allow everyone to manage their personal or confidential data. But how to provide the trust required between the stakeholders of a given ecosystem to work together, each preserving their interest and their business? HistoTrust introduces a solution to this problem. A system architecture separating the data belonging to each stakeholder and the cryptographic proofs (attestations) on their history is implemented. An Ethereum ledger is deployed to maintain the history of the attestations, thus guaranteeing their tamper-resistance, their timestamp and their order. The ledger allows these attestations to be shared between the stakeholders in order to create trust without revealing secret or critical data. In each IoT device, the root-of-trust secrets used to attest the data produced are protected at storage in a TPM ST33 and during execution within an ARM Cortex-A7 TrustZone. The designed solution aims to be resilient, robust to software attacks and to present a high level of protection against side-channel attacks and fault injections. Furthermore, the real-time constraints of an embedded industrial application are respected. The integration of the security measures does not impact the performance in use.</abstract><cop>Switzerland</cop><pub>Springer International Publishing AG</pub><doi>10.1007/978-3-031-08147-7_9</doi><oclcid>1330932145</oclcid><tpages>16</tpages><orcidid>https://orcid.org/0000-0002-9170-6134</orcidid></addata></record> |
| fulltext | fulltext |
| identifier | ISSN: 0302-9743 |
| ispartof | Foundations and Practice of Security, 2022, Vol.13291, p.130-145 |
| issn | 0302-9743 1611-3349 |
| language | eng |
| recordid | cdi_hal_primary_oai_HAL_cea_04813608v1 |
| source | Springer Books |
| subjects | Attestation Computer Science Cryptography and Security Data history Embedded industrial application Engineering Sciences IoT Ledger OP-TEE Real-time performance Secure hardware TPM Trust |
| title | HistoTrust: Ethereum-Based Attestation of a Data History Built with OP-TEE and TPM |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-02-09T05%3A45%3A38IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_hal_p&rft_val_fmt=info:ofi/fmt:kev:mtx:book&rft.genre=bookitem&rft.atitle=HistoTrust:%20Ethereum-Based%20Attestation%20of%20a%20Data%20History%20Built%20with%20OP-TEE%20and%20TPM&rft.btitle=Foundations%20and%20Practice%20of%20Security&rft.au=Paulin,%20Dylan&rft.date=2022&rft.volume=13291&rft.spage=130&rft.epage=145&rft.pages=130-145&rft.issn=0302-9743&rft.eissn=1611-3349&rft.isbn=9783031081460&rft.isbn_list=3031081463&rft.isbn_list=3031081471&rft.isbn_list=9783031081477&rft_id=info:doi/10.1007/978-3-031-08147-7_9&rft_dat=%3Cproquest_hal_p%3EEBC7017505_135_142%3C/proquest_hal_p%3E%3Curl%3E%3C/url%3E&rft.eisbn=3031081471&rft.eisbn_list=9783031081477&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=EBC7017505_135_142&rft_id=info:pmid/&rfr_iscdi=true |