An Anonymous Remote Attestation Protocol to Prevent Masquerading Attack

Since TCG v1.2, an anonymous attestation protocol was proposed, called direct anonymous attestation (DAA), which is designed to preserve the user privacy. However, this scheme is vulnerable to the masquerading attack, meanwhile not be practically deployed with existing network protocols. In this paper, we proposed a novel anonymous remote attestation protocol based on the direct anonymous attestation and the transport layer security (TLS) protocol. We integrate anonymous attestation, integrity report and key agreement mechanisms to establish a trusted channel, which provides platform configuration attestation and anonymous identity authentication. Security analysis shows that our protocol satisfies anonymity, unforgeability, uncloneability and user-control link ability in identity authentication as well as resists the replay attack and the masquerading attack.