Property-Based Scalable Remote Attestation of Computing Platform

The remote attestation mechanism serves to prove the trusted state of remote platform to a local user, and TPM is always the bottleneck of remote attestation efficiency. There are some improvement methods on remote attestation scalability at present. However, the existing methods have the problems such as lack of privacy protection, vendor discrimination, and marked increase of communication load. And in order to solve these problems, a Property-based Scalable Remote Attestation method (PSRA) is proposed in this paper. PSRA imports attest proxy to protect the configuration privacy of platform and uses ring buffer and Merkle tree to improve the efficiency of remote attestation. In this paper, the PSRA overall structure is presented, and a Property-based Scalable Remote Attestation Protocol is designed. Under the premise of both sides trusting on the attest proxy, the protocol could attest to the remote platform´s security property for the requestor without leak of remote platform´s configuration information. Further, a performance comparison between several improvement methods on remote attestation scalability is given based on an experiment on a specific scenario. It´s proved that PSRA has advantages on aspects of average response time and communication load compared with existing method, and could also protect the platform the configuration privacy effectively.