User-centred attestation for layered and decentralised systems

Hagen Lauer, Ahmad Salehi S., Carsten Rudolph, Surya Nepal

Research output: Chapter in Book/Report/Conference proceedingConference PaperResearch

Abstract

Virtualization is omnipresent as the backbone of cloud, edge, and fog computing as well as X-as-a-service infrastructure. It continues to gain increased popularity even in edge or end-user and embedded devices. The need for standards and specifications for secure and trustworthy collaboration becomes a pressing issue. Trusted Computing is considered one of the pillars towards trustworthy systems both in terms of practical security mechanisms and supporting standards. This paper revisits the Trusted Computing tool-set and introduces its current application in virtualization scenarios. We discuss challenges related to translating the term trust between specifications for hardware modules such as the Trusted Platform Module (TPM) and applied specifications for operating systems, hypervisors, and virtual machines are — defining trust establishment becomes crucial for specifications extending trust beyond the TPM. We define Usercentered attestation as a set of principles suitable for layered, decentralized systems along with a methodology for specifying and synthesizing such a trust establishment strategy.
Original languageEnglish
Title of host publicationProceedings -2018 - Workshop on Decentralized IoT Security and Standards (DISS)
Subtitle of host publicationFebruary 18, 2018 San Diego, California
EditorsOlaf Bergmann, Thorsten Dahm, Oscar Garcia-Morchon, Raja Jurdak, Matthias Kovatsch, Michał Król, Barry Leiba, Samuel Marchal, Jörg Ott, Oliver Pfaff, Shahid Raza, Elena Reshetova, Eve Schooler, Göran Selander, Mohit Sethi, Angelos Stavrou, Davor Svetinovic, Hannes Tschofening, Florian Tschorsch, Christian Tschudin, Gene Tsudik
Place of PublicationReston VA USA
PublisherInternet Society
Number of pages6
ISBN (Electronic)1891562517
DOIs
Publication statusPublished - 2018
EventWorkshop on Decentralized IoT Security and Standards 2018 - San Diego, United States of America
Duration: 18 Feb 201818 Feb 2018
https://www.ndss-symposium.org/ndss2018/diss-workshop-programme/

Conference

ConferenceWorkshop on Decentralized IoT Security and Standards 2018
Abbreviated titleDISS 2018
CountryUnited States of America
CitySan Diego
Period18/02/1818/02/18
Internet address

Cite this

Lauer, H., Salehi S., A., Rudolph, C., & Nepal, S. (2018). User-centred attestation for layered and decentralised systems. In O. Bergmann, T. Dahm, O. Garcia-Morchon, R. Jurdak, M. Kovatsch, M. Król, B. Leiba, S. Marchal, J. Ott, O. Pfaff, S. Raza, E. Reshetova, E. Schooler, G. Selander, M. Sethi, A. Stavrou, D. Svetinovic, H. Tschofening, F. Tschorsch, C. Tschudin, ... G. Tsudik (Eds.), Proceedings -2018 - Workshop on Decentralized IoT Security and Standards (DISS) : February 18, 2018 San Diego, California Reston VA USA: Internet Society. https://doi.org/10.14722/diss.2018.23012
Lauer, Hagen ; Salehi S., Ahmad ; Rudolph, Carsten ; Nepal, Surya. / User-centred attestation for layered and decentralised systems. Proceedings -2018 - Workshop on Decentralized IoT Security and Standards (DISS) : February 18, 2018 San Diego, California. editor / Olaf Bergmann ; Thorsten Dahm ; Oscar Garcia-Morchon ; Raja Jurdak ; Matthias Kovatsch ; Michał Król ; Barry Leiba ; Samuel Marchal ; Jörg Ott ; Oliver Pfaff ; Shahid Raza ; Elena Reshetova ; Eve Schooler ; Göran Selander ; Mohit Sethi ; Angelos Stavrou ; Davor Svetinovic ; Hannes Tschofening ; Florian Tschorsch ; Christian Tschudin ; Gene Tsudik. Reston VA USA : Internet Society, 2018.
@inproceedings{ed3c906d4d6343ca9df57341d567e338,
title = "User-centred attestation for layered and decentralised systems",
abstract = "Virtualization is omnipresent as the backbone of cloud, edge, and fog computing as well as X-as-a-service infrastructure. It continues to gain increased popularity even in edge or end-user and embedded devices. The need for standards and specifications for secure and trustworthy collaboration becomes a pressing issue. Trusted Computing is considered one of the pillars towards trustworthy systems both in terms of practical security mechanisms and supporting standards. This paper revisits the Trusted Computing tool-set and introduces its current application in virtualization scenarios. We discuss challenges related to translating the term trust between specifications for hardware modules such as the Trusted Platform Module (TPM) and applied specifications for operating systems, hypervisors, and virtual machines are — defining trust establishment becomes crucial for specifications extending trust beyond the TPM. We define Usercentered attestation as a set of principles suitable for layered, decentralized systems along with a methodology for specifying and synthesizing such a trust establishment strategy.",
author = "Hagen Lauer and {Salehi S.}, Ahmad and Carsten Rudolph and Surya Nepal",
year = "2018",
doi = "10.14722/diss.2018.23012",
language = "English",
editor = "Bergmann, {Olaf } and Dahm, {Thorsten } and Garcia-Morchon, {Oscar } and Jurdak, {Raja } and Kovatsch, {Matthias } and Kr{\'o}l, {Michał } and Leiba, {Barry } and Marchal, {Samuel } and Ott, {J{\"o}rg } and Oliver Pfaff and Raza, {Shahid } and Reshetova, {Elena } and Schooler, {Eve } and Selander, {G{\"o}ran } and Sethi, {Mohit } and Stavrou, {Angelos } and Svetinovic, {Davor } and Tschofening, {Hannes } and Tschorsch, {Florian } and Tschudin, {Christian } and Tsudik, {Gene }",
booktitle = "Proceedings -2018 - Workshop on Decentralized IoT Security and Standards (DISS)",
publisher = "Internet Society",

}

Lauer, H, Salehi S., A, Rudolph, C & Nepal, S 2018, User-centred attestation for layered and decentralised systems. in O Bergmann, T Dahm, O Garcia-Morchon, R Jurdak, M Kovatsch, M Król, B Leiba, S Marchal, J Ott, O Pfaff, S Raza, E Reshetova, E Schooler, G Selander, M Sethi, A Stavrou, D Svetinovic, H Tschofening, F Tschorsch, C Tschudin & G Tsudik (eds), Proceedings -2018 - Workshop on Decentralized IoT Security and Standards (DISS) : February 18, 2018 San Diego, California. Internet Society, Reston VA USA, Workshop on Decentralized IoT Security and Standards 2018, San Diego, United States of America, 18/02/18. https://doi.org/10.14722/diss.2018.23012

User-centred attestation for layered and decentralised systems. / Lauer, Hagen ; Salehi S., Ahmad; Rudolph, Carsten; Nepal, Surya.

Proceedings -2018 - Workshop on Decentralized IoT Security and Standards (DISS) : February 18, 2018 San Diego, California. ed. / Olaf Bergmann; Thorsten Dahm; Oscar Garcia-Morchon; Raja Jurdak; Matthias Kovatsch; Michał Król; Barry Leiba; Samuel Marchal; Jörg Ott; Oliver Pfaff; Shahid Raza; Elena Reshetova; Eve Schooler; Göran Selander; Mohit Sethi; Angelos Stavrou; Davor Svetinovic; Hannes Tschofening; Florian Tschorsch; Christian Tschudin; Gene Tsudik. Reston VA USA : Internet Society, 2018.

Research output: Chapter in Book/Report/Conference proceedingConference PaperResearch

TY - GEN

T1 - User-centred attestation for layered and decentralised systems

AU - Lauer, Hagen

AU - Salehi S., Ahmad

AU - Rudolph, Carsten

AU - Nepal, Surya

PY - 2018

Y1 - 2018

N2 - Virtualization is omnipresent as the backbone of cloud, edge, and fog computing as well as X-as-a-service infrastructure. It continues to gain increased popularity even in edge or end-user and embedded devices. The need for standards and specifications for secure and trustworthy collaboration becomes a pressing issue. Trusted Computing is considered one of the pillars towards trustworthy systems both in terms of practical security mechanisms and supporting standards. This paper revisits the Trusted Computing tool-set and introduces its current application in virtualization scenarios. We discuss challenges related to translating the term trust between specifications for hardware modules such as the Trusted Platform Module (TPM) and applied specifications for operating systems, hypervisors, and virtual machines are — defining trust establishment becomes crucial for specifications extending trust beyond the TPM. We define Usercentered attestation as a set of principles suitable for layered, decentralized systems along with a methodology for specifying and synthesizing such a trust establishment strategy.

AB - Virtualization is omnipresent as the backbone of cloud, edge, and fog computing as well as X-as-a-service infrastructure. It continues to gain increased popularity even in edge or end-user and embedded devices. The need for standards and specifications for secure and trustworthy collaboration becomes a pressing issue. Trusted Computing is considered one of the pillars towards trustworthy systems both in terms of practical security mechanisms and supporting standards. This paper revisits the Trusted Computing tool-set and introduces its current application in virtualization scenarios. We discuss challenges related to translating the term trust between specifications for hardware modules such as the Trusted Platform Module (TPM) and applied specifications for operating systems, hypervisors, and virtual machines are — defining trust establishment becomes crucial for specifications extending trust beyond the TPM. We define Usercentered attestation as a set of principles suitable for layered, decentralized systems along with a methodology for specifying and synthesizing such a trust establishment strategy.

U2 - 10.14722/diss.2018.23012

DO - 10.14722/diss.2018.23012

M3 - Conference Paper

BT - Proceedings -2018 - Workshop on Decentralized IoT Security and Standards (DISS)

A2 - Bergmann, Olaf

A2 - Dahm, Thorsten

A2 - Garcia-Morchon, Oscar

A2 - Jurdak, Raja

A2 - Kovatsch, Matthias

A2 - Król, Michał

A2 - Leiba, Barry

A2 - Marchal, Samuel

A2 - Ott, Jörg

A2 - Pfaff, Oliver

A2 - Raza, Shahid

A2 - Reshetova, Elena

A2 - Schooler, Eve

A2 - Selander, Göran

A2 - Sethi, Mohit

A2 - Stavrou, Angelos

A2 - Svetinovic, Davor

A2 - Tschofening, Hannes

A2 - Tschorsch, Florian

A2 - Tschudin, Christian

A2 - Tsudik, Gene

PB - Internet Society

CY - Reston VA USA

ER -

Lauer H, Salehi S. A, Rudolph C, Nepal S. User-centred attestation for layered and decentralised systems. In Bergmann O, Dahm T, Garcia-Morchon O, Jurdak R, Kovatsch M, Król M, Leiba B, Marchal S, Ott J, Pfaff O, Raza S, Reshetova E, Schooler E, Selander G, Sethi M, Stavrou A, Svetinovic D, Tschofening H, Tschorsch F, Tschudin C, Tsudik G, editors, Proceedings -2018 - Workshop on Decentralized IoT Security and Standards (DISS) : February 18, 2018 San Diego, California. Reston VA USA: Internet Society. 2018 https://doi.org/10.14722/diss.2018.23012