Dynamic Policy Discovery with Remote Attestation

Pitcher, Corin; Riely, James

doi:10.1007/11690634_8

Cited by 5 publications

(5 citation statements)

References 59 publications

(64 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Two frameworks supporting RA based on the π-calculus are presented in the extended abstract by Pitcher and Riely [38] and the paper by Cirillo and Riely [39]. Contrary to our model, these frameworks deal with S-RTM, thus putting a lot of effort into maintaining the chain of trust.…”

Section: Related Workmentioning

confidence: 99%

“…Moreover, in the paper by Cirillo and Riely, the framework is an extension of a higherorder π-calculus, i.e., a version of the π-calculus where terms can contain programs. These frameworks [38], [39] are both typed and the type system is used to specify access policies based on the remote attestation primitive. In these frameworks one cannot use attestation to identify a program, only to prove that it satisfies the type system.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

$\pi_{\mathbf{RA}}$: A $\pi\text{-calculus}$ for Verifying Protocols that Use Remote Attestation

Lanckriet,

Busi,

Devriese

2023

2023 IEEE 36th Computer Security Foundations Symposium (CSF)

View full text Add to dashboard Cite

Remote attestation (RA) is a primitive that allows the authentication of software components on untrusted systems by relying on a root of trust. Network protocols can use the primitive to establish trust in remote software components they communicate with. As such, RA can be regarded as a firstclass security primitive like (a)symmetric encryption, message authentication, etc. However, current formal models of RA do not allow analysing protocols that use the primitive without tying them to specific platforms, low-level languages, memory protection models, or implementation details.In this paper, we propose and demonstrate a new model, called π RA , that supports RA at a high level of abstraction by treating it as a cryptographic primitive in a variant of the applied πcalculus. To demonstrate the use of π RA , we use it to formalise and analyse the security of MAGE, an SGX-based framework that allows mutual attestation of multiple enclaves. The protocol is formalised in the form of a compiler that implements actorbased communication primitives in a source language (π Actor ) in terms of remote attestation primitives in π RA . Our security analysis uncovers a caveat in the security of MAGE that was left unmentioned in the original paper.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

$\pi_{\mathbf{RA}}$: A $\pi\text{-calculus}$ for Verifying Protocols that Use Remote Attestation

Lanckriet,

Busi,

Devriese

2023

2023 IEEE 36th Computer Security Foundations Symposium (CSF)

View full text Add to dashboard Cite

show abstract

“…Klaim (see [11] for a survey) is a Linda-tuple based programming model with a notion of named locations with access control policies that specify the capabilities of the location. A similar approach is taken in [28,37,36]. [15] and [19] explore role-based access control in the context of mobile process calculi.…”

Section: Related Workmentioning

confidence: 99%

Do As I SaY! Programmatic Access Control with Explicit Identities

Cirillo¹,

Jagadeesan²,

Pitcher³

et al. 2007

20th IEEE Computer Security Foundations Symposium (CSF'07)

Self Cite

View full text Add to dashboard Cite

We address the programmatic realization of the access control model of security in distributed systems. Our aim is to bridge the gap between abstract/declarative policies and their concrete/operational implementations.We present a programming formalism (which extends the asynchronous pi-calculus with explicit principals) and a specification logic (which extends Datalog with primitives from authorization logic). We provide two kinds of static analysis methods to tie implementation to specification. Type checking determines that a program is a sound implementation of policy; i.e., that all granted accesses are safe in the face of arbitrary opponents. Model checking determines a degree of completeness; i.e., that accesses permitted by the policy are actually granted in the implementation.

show abstract

“…In disaster-tolerant systems, besides adopting high performance disaster-tolerant technology, it is also quite necessary to assure terminal trustworthiness in disaster-tolerant systems and the safety of data storage, in order to ensure a more robust data security. Therefore, it is of great importance to study the terminal of disaster-tolerant systems and security enhancement technology of disaster-tolerant data [1] .Except for various kinds of traditional security enhancement technologies [2] , we usually need to run an attestation protocol [3] to verify the degree of trust involving the terminal of disaster-tolerant systems. Apart from the early popular security protocols [4] , there are a great many practical protocols such as the Kerberos protocol [5] .…”

mentioning

confidence: 99%

“…Except for various kinds of traditional security enhancement technologies [2] , we usually need to run an attestation protocol [3] to verify the degree of trust involving the terminal of disaster-tolerant systems. Apart from the early popular security protocols [4] , there are a great many practical protocols such as the Kerberos protocol [5] .…”

mentioning

confidence: 99%

Study on security enhancement technology for disaster tolerant system

Wang

et al. 2009

Wuhan Univ. J. Nat. Sci.

View full text Add to dashboard Cite

This paper proposes a security enhancement scheme for disaster tolerant systems based on trusted computing technology which combines with the idea of distributed threshold storage. This scheme takes advantage of a trusted computing platform with a trusted computing module, which has excellent features such as security storage, remote attestation, and so on. These features effectively ensure trustworthiness of the disaster tolerant point. Furthermore, distributed storage based on Erasure code not only disposes the storage problem about a great deal of data, but also preferably avoids one node invalidation, alleviates network load and deals with joint cheat and many other security problems. Consequently, those security enhancement technologies provide mass data with global security protection during the course of disaster tolerance.With the rapid development of information technology and continuous enhancement of people's dependence on information systems, guaranteeing the data security of information systems has attracted wide attention. However, under an open network environment, data faces all kinds of threats so that information systems have to face great difficulties. It is proved that adopting a disaster-tolerant method is an effective technological way for mass data of information systems. In disaster-tolerant systems, besides adopting high performance disaster-tolerant technology, it is also quite necessary to assure terminal trustworthiness in disaster-tolerant systems and the safety of data storage, in order to ensure a more robust data security. Therefore, it is of great importance to study the terminal of disaster-tolerant systems and security enhancement technology of disaster-tolerant data [1] .Except for various kinds of traditional security enhancement technologies [2] , we usually need to run an attestation protocol [3] to verify the degree of trust involving the terminal of disaster-tolerant systems. Apart from the early popular security protocols [4] , there are a great many practical protocols such as the Kerberos protocol [5] . Although these protocols settle matters about user-level identity attestation, these schemes still omit a few problems as follows: ① Do not check out whether the terminal platform is trusted. ② Do not consider the privacy of users. Furthermore, besides traditional user identity authentication, the proposed scheme must con-

show abstract

Dynamic Policy Discovery with Remote Attestation

Cited by 5 publications

References 59 publications

$\pi_{\mathbf{RA}}$: A $\pi\text{-calculus}$ for Verifying Protocols that Use Remote Attestation

$\pi_{\mathbf{RA}}$: A $\pi\text{-calculus}$ for Verifying Protocols that Use Remote Attestation

Do As I SaY! Programmatic Access Control with Explicit Identities

Study on security enhancement technology for disaster tolerant system

Contact Info

Product

Resources

About