Sciweavers

IJISEC
2011

Principles of remote attestation

13 years 4 months ago
Principles of remote attestation
Remote attestation is the activity of making a claim about properties of a target by supplying evidence to an appraiser over a network. We identify five central principles to guide development of attestation systems. We argue that (i) attestation must be able to deliver temporally fresh evidence; (ii) comprehensive information about the target should be accessible; (iii) the target, or its owner, should be able to constrain disclosure of information about the target; (iv) attestation claims should have explicit semantics to allow decisions to be derived from several claims; and (v) the underlying attestation mechanism must be trustworthy. We illustrate how to acquire evidence from a running system, and how to transport it via protocols to remote appraisers. We propose an architecture for attestation guided by these principles. Virtualized platforms, which are increasingly well supported on stock hardware, provide a natural basis for our attestation architecture.
George Coker, Joshua D. Guttman, Peter Loscocco, A
Added 30 Aug 2011
Updated 30 Aug 2011
Type Journal
Year 2011
Where IJISEC
Authors George Coker, Joshua D. Guttman, Peter Loscocco, Amy L. Herzog, Jonathan Millen, Brian O'Hanlon, John D. Ramsdell, Ariel Segall, Justin Sheehy, Brian T. Sniffen
Comments (0)