Sciweavers

CCS
2013
ACM

A security framework for the analysis and design of software attestation

10 years 6 months ago
A security framework for the analysis and design of software attestation
Software attestation has become a popular and challenging research topic at many established security conferences with an expected strong impact in practice. It aims at verifying the software integrity of (typically) resource-constrained embedded devices. However, for practical reasons, software attestation cannot rely on stored cryptographic secrets or dedicated trusted hardware. Instead, it exploits side-channel information, such as the time that the underlying device needs for a specific computation. As traditional cryptographic solutions and arguments are not applicable, novel approaches for the design and analysis are necessary. This is certainly one of the main reasons why the security goals, properties and underlying assumptions of existing software attestation schemes have been only vaguely discussed so far, limiting the confidence in their security claims. Thus, putting software attestation on a solid ground and having a founded approach for designing secure software attest...
Frederik Armknecht, Ahmad-Reza Sadeghi, Steffen Sc
Added 27 Apr 2014
Updated 27 Apr 2014
Type Journal
Year 2013
Where CCS
Authors Frederik Armknecht, Ahmad-Reza Sadeghi, Steffen Schulz, Christian Wachsmann
Comments (0)