User-centred attestation for layered and decentralised systems

Hagen  Lauer; Ahmad Salehi S.; Carsten Rudolph; Surya Nepal

doi:10.14722/diss.2018.23012

User-centred attestation for layered and decentralised systems

Hagen Lauer, Ahmad Salehi S., Carsten Rudolph, Surya Nepal

Research output: Chapter in Book/Report/Conference proceeding › Conference Paper › Research

Abstract

Virtualization is omnipresent as the backbone of cloud, edge, and fog computing as well as X-as-a-service infrastructure. It continues to gain increased popularity even in edge or end-user and embedded devices. The need for standards and specifications for secure and trustworthy collaboration becomes a pressing issue. Trusted Computing is considered one of the pillars towards trustworthy systems both in terms of practical security mechanisms and supporting standards. This paper revisits the Trusted Computing tool-set and introduces its current application in virtualization scenarios. We discuss challenges related to translating the term trust between specifications for hardware modules such as the Trusted Platform Module (TPM) and applied specifications for operating systems, hypervisors, and virtual machines are — defining trust establishment becomes crucial for specifications extending trust beyond the TPM. We define Usercentered attestation as a set of principles suitable for layered, decentralized systems along with a methodology for specifying and synthesizing such a trust establishment strategy.

Original language	English
Title of host publication	Proceedings -2018 - Workshop on Decentralized IoT Security and Standards (DISS)
Subtitle of host publication	February 18, 2018 San Diego, California
Editors	Olaf Bergmann, Thorsten Dahm, Oscar Garcia-Morchon, Raja Jurdak, Matthias Kovatsch, Michał Król, Barry Leiba, Samuel Marchal, Jörg Ott, Oliver Pfaff, Shahid Raza, Elena Reshetova, Eve Schooler, Göran Selander, Mohit Sethi, Angelos Stavrou, Davor Svetinovic, Hannes Tschofening, Florian Tschorsch, Christian Tschudin, Gene Tsudik
Place of Publication	Reston VA USA
Publisher	Internet Society
Number of pages	6
ISBN (Electronic)	1891562517
DOIs	https://doi.org/10.14722/diss.2018.23012
Publication status	Published - 2018
Event	Workshop on Decentralized IoT Security and Standards 2018 - San Diego, United States of America Duration: 18 Feb 2018 → 18 Feb 2018 https://www.ndss-symposium.org/ndss2018/diss-workshop-programme/

Conference

Conference	Workshop on Decentralized IoT Security and Standards 2018
Abbreviated title	DISS 2018
Country	United States of America
City	San Diego
Period	18/02/18 → 18/02/18
Internet address	https://www.ndss-symposium.org/ndss2018/diss-workshop-programme/

Access to Document

10.14722/diss.2018.23012

269534447-oaFinal published version, 204 KB

Cite this

Lauer, H., Salehi S., A., Rudolph, C., & Nepal, S. (2018). User-centred attestation for layered and decentralised systems. In O. Bergmann, T. Dahm, O. Garcia-Morchon, R. Jurdak, M. Kovatsch, M. Król, B. Leiba, S. Marchal, J. Ott, O. Pfaff, S. Raza, E. Reshetova, E. Schooler, G. Selander, M. Sethi, A. Stavrou, D. Svetinovic, H. Tschofening, F. Tschorsch, C. Tschudin, ... G. Tsudik (Eds.), Proceedings -2018 - Workshop on Decentralized IoT Security and Standards (DISS) : February 18, 2018 San Diego, California Internet Society. https://doi.org/10.14722/diss.2018.23012

Lauer, Hagen ; Salehi S., Ahmad ; Rudolph, Carsten ; Nepal, Surya. / User-centred attestation for layered and decentralised systems. Proceedings -2018 - Workshop on Decentralized IoT Security and Standards (DISS) : February 18, 2018 San Diego, California. editor / Olaf Bergmann ; Thorsten Dahm ; Oscar Garcia-Morchon ; Raja Jurdak ; Matthias Kovatsch ; Michał Król ; Barry Leiba ; Samuel Marchal ; Jörg Ott ; Oliver Pfaff ; Shahid Raza ; Elena Reshetova ; Eve Schooler ; Göran Selander ; Mohit Sethi ; Angelos Stavrou ; Davor Svetinovic ; Hannes Tschofening ; Florian Tschorsch ; Christian Tschudin ; Gene Tsudik. Reston VA USA : Internet Society, 2018.

@inproceedings{ed3c906d4d6343ca9df57341d567e338,

title = "User-centred attestation for layered and decentralised systems",

abstract = "Virtualization is omnipresent as the backbone of cloud, edge, and fog computing as well as X-as-a-service infrastructure. It continues to gain increased popularity even in edge or end-user and embedded devices. The need for standards and specifications for secure and trustworthy collaboration becomes a pressing issue. Trusted Computing is considered one of the pillars towards trustworthy systems both in terms of practical security mechanisms and supporting standards. This paper revisits the Trusted Computing tool-set and introduces its current application in virtualization scenarios. We discuss challenges related to translating the term trust between specifications for hardware modules such as the Trusted Platform Module (TPM) and applied specifications for operating systems, hypervisors, and virtual machines are — defining trust establishment becomes crucial for specifications extending trust beyond the TPM. We define Usercentered attestation as a set of principles suitable for layered, decentralized systems along with a methodology for specifying and synthesizing such a trust establishment strategy.",

author = "Hagen Lauer and {Salehi S.}, Ahmad and Carsten Rudolph and Surya Nepal",

year = "2018",

doi = "10.14722/diss.2018.23012",

language = "English",

editor = "Bergmann, {Olaf } and Dahm, {Thorsten } and Garcia-Morchon, {Oscar } and Jurdak, {Raja } and Kovatsch, {Matthias } and Kr{\'o}l, {Micha{\l} } and Leiba, {Barry } and Marchal, {Samuel } and Ott, {J{\"o}rg } and Oliver Pfaff and Raza, {Shahid } and Reshetova, {Elena } and Schooler, {Eve } and Selander, {G{\"o}ran } and Sethi, {Mohit } and Stavrou, {Angelos } and Svetinovic, {Davor } and Tschofening, {Hannes } and Tschorsch, {Florian } and Tschudin, {Christian } and Tsudik, {Gene }",

booktitle = "Proceedings -2018 - Workshop on Decentralized IoT Security and Standards (DISS)",

publisher = "Internet Society",

note = "Workshop on Decentralized IoT Security and Standards 2018, DISS 2018 ; Conference date: 18-02-2018 Through 18-02-2018",

url = "https://www.ndss-symposium.org/ndss2018/diss-workshop-programme/",

}

Lauer, H, Salehi S., A, Rudolph, C & Nepal, S 2018, User-centred attestation for layered and decentralised systems. in O Bergmann, T Dahm, O Garcia-Morchon, R Jurdak, M Kovatsch, M Król, B Leiba, S Marchal, J Ott, O Pfaff, S Raza, E Reshetova, E Schooler, G Selander, M Sethi, A Stavrou, D Svetinovic, H Tschofening, F Tschorsch, C Tschudin & G Tsudik (eds), Proceedings -2018 - Workshop on Decentralized IoT Security and Standards (DISS) : February 18, 2018 San Diego, California. Internet Society, Reston VA USA, Workshop on Decentralized IoT Security and Standards 2018, San Diego, United States of America, 18/02/18. https://doi.org/10.14722/diss.2018.23012

User-centred attestation for layered and decentralised systems. / Lauer, Hagen ; Salehi S., Ahmad; Rudolph, Carsten; Nepal, Surya.

Proceedings -2018 - Workshop on Decentralized IoT Security and Standards (DISS) : February 18, 2018 San Diego, California. ed. / Olaf Bergmann; Thorsten Dahm; Oscar Garcia-Morchon; Raja Jurdak; Matthias Kovatsch; Michał Król; Barry Leiba; Samuel Marchal; Jörg Ott; Oliver Pfaff; Shahid Raza; Elena Reshetova; Eve Schooler; Göran Selander; Mohit Sethi; Angelos Stavrou; Davor Svetinovic; Hannes Tschofening; Florian Tschorsch; Christian Tschudin; Gene Tsudik. Reston VA USA : Internet Society, 2018.

Research output: Chapter in Book/Report/Conference proceeding › Conference Paper › Research

TY - GEN

T1 - User-centred attestation for layered and decentralised systems

AU - Lauer, Hagen

AU - Salehi S., Ahmad

AU - Rudolph, Carsten

AU - Nepal, Surya

PY - 2018

Y1 - 2018

N2 - Virtualization is omnipresent as the backbone of cloud, edge, and fog computing as well as X-as-a-service infrastructure. It continues to gain increased popularity even in edge or end-user and embedded devices. The need for standards and specifications for secure and trustworthy collaboration becomes a pressing issue. Trusted Computing is considered one of the pillars towards trustworthy systems both in terms of practical security mechanisms and supporting standards. This paper revisits the Trusted Computing tool-set and introduces its current application in virtualization scenarios. We discuss challenges related to translating the term trust between specifications for hardware modules such as the Trusted Platform Module (TPM) and applied specifications for operating systems, hypervisors, and virtual machines are — defining trust establishment becomes crucial for specifications extending trust beyond the TPM. We define Usercentered attestation as a set of principles suitable for layered, decentralized systems along with a methodology for specifying and synthesizing such a trust establishment strategy.

AB - Virtualization is omnipresent as the backbone of cloud, edge, and fog computing as well as X-as-a-service infrastructure. It continues to gain increased popularity even in edge or end-user and embedded devices. The need for standards and specifications for secure and trustworthy collaboration becomes a pressing issue. Trusted Computing is considered one of the pillars towards trustworthy systems both in terms of practical security mechanisms and supporting standards. This paper revisits the Trusted Computing tool-set and introduces its current application in virtualization scenarios. We discuss challenges related to translating the term trust between specifications for hardware modules such as the Trusted Platform Module (TPM) and applied specifications for operating systems, hypervisors, and virtual machines are — defining trust establishment becomes crucial for specifications extending trust beyond the TPM. We define Usercentered attestation as a set of principles suitable for layered, decentralized systems along with a methodology for specifying and synthesizing such a trust establishment strategy.

U2 - 10.14722/diss.2018.23012

DO - 10.14722/diss.2018.23012

M3 - Conference Paper

BT - Proceedings -2018 - Workshop on Decentralized IoT Security and Standards (DISS)

A2 - Bergmann, Olaf

A2 - Dahm, Thorsten

A2 - Garcia-Morchon, Oscar

A2 - Jurdak, Raja

A2 - Kovatsch, Matthias

A2 - Król, Michał

A2 - Leiba, Barry

A2 - Marchal, Samuel

A2 - Ott, Jörg

A2 - Pfaff, Oliver

A2 - Raza, Shahid

A2 - Reshetova, Elena

A2 - Schooler, Eve

A2 - Selander, Göran

A2 - Sethi, Mohit

A2 - Stavrou, Angelos

A2 - Svetinovic, Davor

A2 - Tschofening, Hannes

A2 - Tschorsch, Florian

A2 - Tschudin, Christian

A2 - Tsudik, Gene

PB - Internet Society

CY - Reston VA USA

T2 - Workshop on Decentralized IoT Security and Standards 2018

Y2 - 18 February 2018 through 18 February 2018

ER -

Lauer H, Salehi S. A, Rudolph C, Nepal S. User-centred attestation for layered and decentralised systems. In Bergmann O, Dahm T, Garcia-Morchon O, Jurdak R, Kovatsch M, Król M, Leiba B, Marchal S, Ott J, Pfaff O, Raza S, Reshetova E, Schooler E, Selander G, Sethi M, Stavrou A, Svetinovic D, Tschofening H, Tschorsch F, Tschudin C, Tsudik G, editors, Proceedings -2018 - Workshop on Decentralized IoT Security and Standards (DISS) : February 18, 2018 San Diego, California. Reston VA USA: Internet Society. 2018 https://doi.org/10.14722/diss.2018.23012