User-centred attestation for layered and decentralised systems

Hagen Lauer, Ahmad Salehi S., Carsten Rudolph, Surya Nepal

Research output: Chapter in Book/Report/Conference proceedingConference PaperResearch

Abstract

Virtualization is omnipresent as the backbone of cloud, edge, and fog computing as well as X-as-a-service infrastructure. It continues to gain increased popularity even in edge or end-user and embedded devices. The need for standards and specifications for secure and trustworthy collaboration becomes a pressing issue. Trusted Computing is considered one of the pillars towards trustworthy systems both in terms of practical security mechanisms and supporting standards. This paper revisits the Trusted Computing tool-set and introduces its current application in virtualization scenarios. We discuss challenges related to translating the term trust between specifications for hardware modules such as the Trusted Platform Module (TPM) and applied specifications for operating systems, hypervisors, and virtual machines are — defining trust establishment becomes crucial for specifications extending trust beyond the TPM. We define Usercentered attestation as a set of principles suitable for layered, decentralized systems along with a methodology for specifying and synthesizing such a trust establishment strategy.
Original languageEnglish
Title of host publicationProceedings -2018 - Workshop on Decentralized IoT Security and Standards (DISS)
Subtitle of host publicationFebruary 18, 2018 San Diego, California
EditorsOlaf Bergmann, Thorsten Dahm, Oscar Garcia-Morchon, Raja Jurdak, Matthias Kovatsch, Michał Król, Barry Leiba, Samuel Marchal, Jörg Ott, Oliver Pfaff, Shahid Raza, Elena Reshetova, Eve Schooler, Göran Selander, Mohit Sethi, Angelos Stavrou, Davor Svetinovic, Hannes Tschofening, Florian Tschorsch, Christian Tschudin, Gene Tsudik
Place of PublicationReston VA USA
PublisherInternet Society
Number of pages6
ISBN (Electronic)1891562517
DOIs
Publication statusPublished - 2018
EventWorkshop on Decentralized IoT Security and Standards 2018 - San Diego, United States of America
Duration: 18 Feb 201818 Feb 2018
https://www.ndss-symposium.org/ndss2018/diss-workshop-programme/

Conference

ConferenceWorkshop on Decentralized IoT Security and Standards 2018
Abbreviated titleDISS 2018
CountryUnited States of America
CitySan Diego
Period18/02/1818/02/18
Internet address

Cite this