Article

A protocol for property-based attestation

Authors:
Liqun Chen

HP Laboratories, Bristol, UK

HP Laboratories, Bristol, UK
View Profile

,
Rainer Landfermann

Ruhr-Universität Bochum, Germany

Ruhr-Universität Bochum, Germany
View Profile

,
Hans Löhr

Ruhr-Universität Bochum, Germany

Ruhr-Universität Bochum, Germany
View Profile

,
Markus Rohe

Ruhr-Universität Bochum, Germany

Ruhr-Universität Bochum, Germany
View Profile

,
Ahmad-Reza Sadeghi

Ruhr-Universität Bochum, Germany

Ruhr-Universität Bochum, Germany
View Profile

,
Christian Stüble

Ruhr-Universität Bochum, Germany

Ruhr-Universität Bochum, Germany
View Profile

STC '06: Proceedings of the first ACM workshop on Scalable trusted computingNovember 2006Pages 7–16https://doi.org/10.1145/1179474.1179479

Published:03 November 2006Publication History

STC '06: Proceedings of the first ACM workshop on Scalable trusted computing

Pages 7–16

ABSTRACT

The Trusted Computing Group (TCG) has issued several specifications to enhance the architecture of common computing platforms by means of new functionalities, amongst others the (binary) attestation to verify the integrity of a (remote) computing platform/application. However, as pointed out recently, the binary attestation has some shortcomings, in particular when used for applications: First, it reveals information about the configuration of a platform (hardware and software) or application. This can be misused to discriminate certain configurations (e.g., operating systems) and the corresponding vendors, or be exploited to mount attacks. Second, it requires the verifier to know all possible ``trusted'' configurations of all platforms as well as managing updates and patches that change the configuration. Third, it does not necessarily imply that the platform complies with desired (security) properties. A recent proposal to overcome these problems is to transform the binary attestation into property-based attestation, which requires to only attest whether a platform or an application fulfills the desired (security) requirements without revealing the specific software or/and hardware configuration.Based on previous works, we propose a concrete efficient property-based attestation protocol within an abstract model for the main functionalities provided by TCG-compliant platforms. We prove the security of this protocol under the strong RSA assumption and the discrete logarithm assumption in the random oracle model. Our scheme allows blind verification and revocation of mappings between properties and configurations.

References

W. A. Arbaugh, D. J. Farber, and J. M. Smith. A secure and reliable bootstrap architecture. In Proceedings of the IEEE Symposium on Research in Security and Privacy, pages 65--71, Oakland, CA, May 1997, IEEE Computer Society Press. Google ScholarDigital Library
P. Barham, B. Dragovic, K. Fraser, S. Hand, T. Harris, A. Ho, R. Neugebauer, I. Pratt, and A. Warfield. Xen and the art of virtualization. In SOSP '03: Proceedings of the 19th ACM symposium on Operating systems principles, pages 164--177, New York, NY, USA, 2003. ACM Press. Google ScholarDigital Library
P. Barham, B. Dragovich, K. Fraser, S. Hand, A. Ho, and I. Pratt. Safe hardware access with the Xen virtual machine monitor. In 1st Workshop on Operating System and Architectural Support for On-Demand IT Infrastructure, 2004.Google Scholar
E. Brickell, J. Camenisch, and L. Chen. Direct anonymous attestation. In Proceedings of the 11th ACM Conference on Computer and Communications Security, Washington, DC, USA, Oct. 2004. ACM Press. Google ScholarDigital Library
J. Camenisch and J. Groth. Group signatures: Better efficiency and new theoretical aspects. In C. Blundo and S. Cimato, editors, SCN, volume 3352 of LNCS, pages 120--133. Springer, 2004. Google ScholarDigital Library
J. Camenisch and A. Lysyanskaya. A signature scheme with efficient protocols. In Third Conference on Security in Communication Networks - SCN '02, volume 2576 of LNCS, pages 268--289. Springer-Verlag, Berlin Germany, 2002. Google ScholarDigital Library
J. Camenisch and V. Shoup. Practical verifiable encryption and decryption of discrete logarithms. In D. Boneh, editor, CRYPTO, volume 2729 of Lecture Notes in Computer Science, pages 126--144. Springer, 2003.Google Scholar
J. Camenisch and M. Stadler. Proof systems for general statements about discrete logarithms. Technical Report TR 260, Department of Computer Science, ETH Zürich, Mar. 1997.Google Scholar
R. Canetti. Security and composition of multiparty cryptographic protocols. Journal of Cryptology, 13(1):143--202, Winter 2000.Google ScholarDigital Library
Common Criteria Project Sponsoring Organisations. Common Criteria for Information Technology Security Evaluation, Aug. 1999. Version 2.1, adopted by ISO/IEC as ISO/IEC International Standard (IS) 15408 1-3. Available from http://csrc.ncsl.nist.gov/cc/ccv20/ccv2list.htm.Google Scholar
J. Dyer, M. Lindemann, R. Perez, R. Sailer, L. van Doorn, S. W. Smith, and S. Weingart. Building the IBM 4758 Secure Coprocessor. IEEE Computer, 34(10):57--66, 2001. Google ScholarDigital Library
P. England, B. Lampson, J. Manferdelli, M. Peinado, and B. Willman. A trusted open platform. IEEE Computer, 36(7):55--63, 2003. Google ScholarDigital Library
A. Fiat and A. Shamir. How to prove yourself: Practical solutions to identification and signature problems. In A. M. Odlyzko, editor, Advances in Cryptology -- CRYPTO '86, volume 263 of LNCS, pages 186--194, Santa Barbara, CA, USA, 1987. International Association for Cryptologic Research, Springer-Verlag, Berlin Germany. Google ScholarDigital Library
T. Garfinkel, B. Pfaff, J. Chow, M. Rosenblum, and D. Boneh. Terra: a virtual machine-based platform for trusted computing. In Proceedings of the 19th ACM Symposium on Operating Systems Principles (SOSP'03), pages 193--206, 2003. Google ScholarDigital Library
T. C. Group. TCG software stack specification. http://trustedcomputinggroup.org, Aug. 2003. Version 1.1.Google Scholar
V. Haldar, D. Chandra, and M. Franz. Semantic remote attestation: A virtual machine directed approach to trusted computing. In USENIX Virtual Machine Research and Technology Symposium, May 2004. also Technical Report No. 03-20, School of Information and Computer Science, University of California, Irvine; October 2003. Google ScholarDigital Library
D. Lie, C. A. Thekkath, and M. Horowitz. Implementing an untrusted operating system on trusted hardware. In Proceedings of the 19th ACM Symposium on Operating Systems Principles (SOSP'03), pages 178--192, 2003. Google ScholarDigital Library
R. MacDonald, S. Smith, J. Marchesini, and O. Wild. Bear: An open-source virtual secure coprocessor based on TCPA. Technical Report TR2003-471, Department of Computer Science, Dartmouth College, 2003.Google Scholar
J. Marchesini, S. Smith, O. Wild, A. Barsamian, and J. Stabiner. Open-source applications of TCPA hardware. In 20th Annual Computer Security Applications Conference. ACM, Dec. 2004. Google ScholarDigital Library
J. Marchesini, S. W. Smith, O. Wild, and R. MacDonald. Experimenting with TCPA/TCG hardware, or: How I learned to stop worrying and love the bear. Technical Report TR2003-476, Department of Computer Science, Dartmouth College, 2003.Google Scholar
Microsoft Corporation. Building a secure platform for trustworthy computing. White paper, Microsoft Corporation, Dec. 2002.Google Scholar
C. Mundie, P. de Vries, P. Haynes, and M. Corwine. Microsoft whitepaper on trustworthy computing. Technical report, Microsoft Corporation, Oct. 2002.Google Scholar
G. C. Necula and P. Lee. The design and implementation of a certifying compiler. In Proceedings of the 1998 ACM SIGPLAN Conference on Prgramming Language Design and Implementation (PLDI), pages 333--344, 1998. Google ScholarDigital Library
T. P. Pedersen. Non-interactive and information-theoretic secure verifiable secret sharing. In J. Feigenbaum, editor, Advances in Cryptology -- CRYPTO '91, volume 576 of LNCS, pages 129--140. International Association for Cryptologic Research, Springer-Verlag, Berlin Germany, 1992. Extended abstract. Google ScholarDigital Library
B. Pfitzmann, J. Riordan, C. Stüble, M. Waidner, and A. Weber. The PERSEUS system architecture. Technical Report RZ 3335 (#93381), IBM Research Division, Zurich Laboratory, Apr. 2001.Google Scholar
B. Pfitzmann and M. Waidner. A model for asynchronous reactive systems and its application to secure message transmission. In Proceedings of the IEEE Symposium on Research in Security and Privacy, pages 184--200, Oakland, CA, May 2001, IEEE Computer Society Press. Google ScholarDigital Library
J. Poritz, M. Schunter, E. Van Herreweghen, and M. Waidner. Property attestation---scalable and privacy-friendly security assessment of peer computers. Technical Report RZ 3548, IBM Research, May 2004.Google Scholar
A.-R. Sadeghi and C. Stüble. Taming ``trusted computing'' by operating system design. In Information Security Applications, volume 2908 of LNCS, pages 286--302. Springer-Verlag, Berlin Germany, 2003.Google Scholar
A.-R. Sadeghi and C. Stüble. Property-based attestation for computing platforms: Caring about properties, not mechanisms. In The 2004 New Security Paradigms Workshop, Virginia Beach, VA, USA, Sept. 2004. ACM SIGSAC, ACM Press. Google ScholarDigital Library
D. Safford. Clarifying misinformation on TCPA. White paper, IBM Research, Oct. 2002.Google Scholar
D. Safford. The need for TCPA. White paper, IBM Research, Oct. 2002.Google Scholar
R. Sailer, T. Jaeger, E. Valdez, R. Caceres, R. Perez, S. Berger, J. L. Griffin, and L. van Doorn. Building a MAC-based security architecture for the Xen open-source hypervisor. In ACSAC '05: Proceedings of the 21st Annual Computer Security Applications Conference, pages 276--285, Washington, DC, USA, 2005. IEEE Computer Society. Google ScholarDigital Library
R. Sailer, E. Valdez, T. Jaeger, R. Perez, L. van Doorn, J. L. Griffin, and S. Berger. sHype: Secure hypervisor approach to trusted virtualized systems. Research Report RC23511, IBM T.J. Watson Research Center, Yorktown Heights, NY, USA, Feb 2005.Google Scholar
R. Sailer, X. Zhang, T. Jaeger, and L. van Doorn. Design and implementation of a TCG-based integrity measurement architecture. In Proceedings of the 13th USENIX Security Symposium. USENIX, Aug. 2004. Google ScholarDigital Library
Trusted~Computing Group. TPM main specification. Main Specification Version 1.2 rev. 85, Trusted Computing Group, Feb. 2005.Google Scholar
Trusted Computing Platform Alliance (TCPA). Main specification, Feb. 2002. Version 1.1b.Google Scholar

Index Terms

A protocol for property-based attestation
1. Security and privacy
  1. Systems security
    1. Operating systems security

Recommendations

Property-based attestation for computing platforms: caring about properties, not mechanisms
NSPW '04: Proceedings of the 2004 workshop on New security paradigms

Over the past years, the computing industry has started various initiatives announced to increase computer security by means of new hardware architectures. The most notable effort is the Trusted Computing Group (TCG) and the Next-Generation Secure ...
Read More
Property-Based Attestation without a Trusted Third Party
ISC '08: Proceedings of the 11th international conference on Information Security

The Trusted Computing Group (TCG) has proposed the binary attestation mechanism that enables a computing platform with a dedicated security chip, the Trusted Platform Module (TPM), to report its state to remote parties. The concept of property-based ...
Read More
An Efficient Property-Based Attestation Scheme with Flexible Revocation Mechanisms
IPDPSW '12: Proceedings of the 2012 IEEE 26th International Parallel and Distributed Processing Symposium Workshops & PhD Forum

In order to solve the problem of platform configuration information leakage that caused by the traditional platform authentication in the distributed trusted computing environment, this paper proposes a novel property-based attestation scheme. This ...
Read More

Comments

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

Published in
STC '06: Proceedings of the first ACM workshop on Scalable trusted computing
November 2006
66 pages
ISBN:1595935487
DOI:10.1145/1179474
General Chair:
Ari Juels
RSA Laboratories
,
Program Chairs:
Gene Tsudik
University of California, Irvine, CA
,
Shouhuai Xu
University of Texas, San Antonio, TX
,
Moti Yung
RSA Labs and Columbia University
Copyright © 2006 ACM
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]
Sponsors
In-Cooperation
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
- Published: 3 November 2006
Permissions
Request permissions about this article.
Request Permissions

Check for updates
Author Tags
TCG binary attestation
property-based attestation
security kernels
zero-knowledge proof of knowledge
Qualifiers
- Article
Conference

Acceptance Rates
Overall Acceptance Rate17of31submissions,55%
Upcoming Conference
CCS '24

Sponsor:

sigsac

ACM SIGSAC Conference on Computer and Communications Security

October 14 - 18, 2024

Salt Lake City , UT , USA
Funding Sources
Other Metrics
View Article Metrics

Article Metrics
- 141
  Total Citations
  View Citations
- 1,164
  Total Downloads
- Downloads (Last 12 months)27
- Downloads (Last 6 weeks)0
Other Metrics
View Author Metrics
Cited By
View all

PDF Format

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

A protocol for property-based attestation

STC '06: Proceedings of the first ACM workshop on Scalable trusted computing

ABSTRACT

References

Cited By

Index Terms

Recommendations

Property-based attestation for computing platforms: caring about properties, not mechanisms

Property-Based Attestation without a Trusted Third Party

An Efficient Property-Based Attestation Scheme with Flexible Revocation Mechanisms