Remote Credential Management with Mutual Attestation for Trusted Execution Environments - Information Security Theory and Practice
Conference Papers Year : 2019

Remote Credential Management with Mutual Attestation for Trusted Execution Environments

Carlton Shepherd
  • Function : Author
  • PersonId : 1036547
Raja Naeem Akram
  • Function : Author
  • PersonId : 1036545

Abstract

Trusted Execution Environments (TEEs) are rapidly emerging as a root-of-trust for protecting sensitive applications and data using hardware-backed isolated worlds of execution. TEEs provide robust assurances regarding critical algorithm execution, tamper-resistant credential storage, and platform integrity using remote attestation. However, the challenge of remotely managing credentials between TEEs remains largely unaddressed in existing literature. In this work, we present novel protocols using mutual attestation for supporting four aspects of secure remote credential management with TEEs: backups, updates, migration, and revocation. The proposed protocols are agnostic to the underlying TEE implementation and subjected to formal verification using Scyther, which found no attacks.
Fichier principal
Vignette du fichier
484602_1_En_12_Chapter.pdf (351.13 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-02294612 , version 1 (23-09-2019)

Licence

Identifiers

Cite

Carlton Shepherd, Raja Naeem Akram, Konstantinos Markantonakis. Remote Credential Management with Mutual Attestation for Trusted Execution Environments. 12th IFIP International Conference on Information Security Theory and Practice (WISTP), Dec 2018, Brussels, Belgium. pp.157-173, ⟨10.1007/978-3-030-20074-9_12⟩. ⟨hal-02294612⟩
80 View
65 Download

Altmetric

Share

More