A Trusted Remote Attestation Model Based on Trusted Computing

Author

Yue Yu ; Huaimin Wang ; Bo Liu ; Gang Yin

Author_Institution

Nat. Lab. for Parallel & Distrib. Process., Nat. Univ. of Defense Technol., Changsha, China

fYear

2013

fDate

16-18 July 2013

Firstpage

1504

Lastpage

1509

Abstract

Traditional security protocols can not be trusted in some application scenarios of high security level because the endpoints integrity is ignored. In this paper, we propose a novel trusted remote attestation model which combines the secure channel and the integrity measurement architecture of trusted computing. We design and implement a prototype system based on a mature security protocol, Transport Layer Security (TLS) protocol, integrated with integrity report provided by trusted platform module (TPM). The TLS protocol guarantees the security of data exchange process and the integrity report of TPM provides the evidence about the trustworthiness and the security state of the communication endpoints. Compared by traditional approaches, our method is more efficient and can be deployed in large scale systems easily.

Keywords

Internet; computer network security; electronic data interchange; transport protocols; trusted computing; TLS; TPM; data exchange process; endpoints integrity; integrity report; large scale systems; security protocols; transport layer security protocol; trusted computing; trusted platform module; trusted remote attestation model; Authentication; Computer architecture; Principal component analysis; Privacy; Protocols; Servers; integrity report; remote attestation; secure channel; trusted computing;

fLanguage

English

Publisher

ieee

Conference_Titel

Trust, Security and Privacy in Computing and Communications (TrustCom), 2013 12th IEEE International Conference on

Conference_Location

Melbourne, VIC

Type

conf

DOI

10.1109/TrustCom.2013.183

Filename

6681007