Title :
Security Model Oriented Attestation on Dynamically Reconfigurable Component-Based Systems
Author :
Gu, Liang ; Bai, Guangdong ; Guo, Yao ; Chen, Xiangqun ; Mei, Hong
Author_Institution :
Key Lab. of High Confidence Software Technol. (Minist. of Educ.), Peking Univ., Beijing, China
Abstract :
As more and more component-based systems (CBS) run in the open and dynamic Internet, it is very important to establish trust between clients and CBS. One of the key mechanisms to establish trust among different platforms in an open and dynamic environment is remote attestation, which allows a platform to vouch for its trust-related characteristics to a remote challenger. This paper proposes a novel attestation scheme for a dynamically reconfigurable CBS to reliably prove whether its execution satisfies the specified security model, by introducing a TPM-based attestation service to dynamically monitor the execution of the CBS. As a case study, we have applied the proposed scheme on OSGi systems and implemented a prototype based on JVMTI for Felix. The evaluation results show that the proposed scheme is both effective and practical.
Keywords :
Internet; object-oriented programming; reconfigurable architectures; security of data; Felix; JVMTI; OSGi system; Security Model Oriented Attestation; TPM-based attestation service; dynamic Internet; dynamically reconfigurable CBS; dynamically reconfigurable component based system; open Internet; remote attestation; trust related characteristics; Component architectures; Internet; Java; Monitoring; Runtime; Security; Software; based systems; remote attestation; security model; security policy; trusted computing;
Conference_Titel :
Ubiquitous Intelligence & Computing and 7th International Conference on Autonomic & Trusted Computing (UIC/ATC), 2010 7th International Conference on
Conference_Location :
Xian, Shaanxi
Print_ISBN :
978-1-4244-9043-1
Electronic_ISBN :
978-0-7695-4272-0
DOI :
10.1109/UIC-ATC.2010.70
