Practical and Privacy-Preserving TEE Migration

Ghada Arfaoui; Jean-François Lalande; Saïd Gharout; Jacques Traoré

doi:10.1007/978-3-319-24018-3_10

Conference Papers Year : 2015

Practical and Privacy-Preserving TEE Migration

(1, 2) , (3, 4) , (5) , (1)

1
2
3
4
5

Ghada Arfaoui

Function : Author
PersonId : 947202

Orange Labs [Caen]

Laboratoire d'Informatique Fondamentale d'Orléans

Jean-François Lalande

Function : Author
PersonId : 3
IdHAL : jean-francois-lalande
ORCID : 0000-0003-4984-2199
IdRef : 086082655

Institut National des Sciences Appliquées - Centre Val de Loire

Confidentialité, Intégrité, Disponibilité et Répartition

Saïd Gharout

Function : Author

Orange Labs [Issy les Moulineaux]

Jacques Traoré

Function : Author

Orange Labs [Caen]

Abstract

Running within the TEE, the Trusted Applications (TA) belong to diverse service providers. Each TA manipulates a profile, constituted of secret credentials and user’s private data. Normally, a user should be able to transfer his TEE profiles from a TEE to another compliant TEE. However, TEE profile migration implies security and privacy issues in particular for TEE profiles that require explicit agreement of the service provider. In this paper, we first present our perception of the deployment and implementation of a TEE: we organize the TEE into security domains with different roles and privileges. Based on this new model, we build a migration protocol of TEE profiles ensuring its confidentiality and integrity. To this end, we use a reencryption key and an authorization token per couple of devices, per service provider and per transfer. The proposed protocol has been successfully validated by AVISPA, an automated security protocol validation tool.

Keywords

TEE Credential transfer Privacy

Domains

Cryptography and Security [cs.CR]

Fichier principal

978-3-319-24018-3_10_Chapter.pdf (477.11 Ko)

Origin : Files produced by the author(s)

Jean-François Lalande : Connect in order to contact the contributor

https://inria.hal.science/hal-01183508

Submitted on : Monday, January 23, 2017-2:55:01 PM

Last modification on : Friday, March 24, 2023-2:53:03 PM

Long-term archiving on: Monday, April 24, 2017-2:35:34 PM

Dates and versions

hal-01183508 , version 1 (23-01-2017)

Licence

Attribution

Identifiers

HAL Id : hal-01183508 , version 1
DOI : 10.1007/978-3-319-24018-3_10

Cite

Ghada Arfaoui, Jean-François Lalande, Saïd Gharout, Jacques Traoré. Practical and Privacy-Preserving TEE Migration. 9th Workshop on Information Security Theory and Practice (WISTP), Aug 2015, Heraklion, Greece. pp.153-168, ⟨10.1007/978-3-319-24018-3_10⟩. ⟨hal-01183508⟩

Export

BibTeX XML-TEI Dublin Core DC Terms EndNote DataCite

Collections

INSTITUT-TELECOM UNIV-RENNES1 CNRS INRIA UNIV-ORLEANS INSA-RENNES IRISA SUP_CIDRE IFIP-LNCS IFIP CENTRALESUPELEC IRISA-D1 INRIA2 IFIP-TC IFIP-WG IFIP-TC11 UR1-MATH-STIC IFIP-WISTP IFIP-WG11-2 IFIP-LNCS-9311 UR1-UFR-ISTIC UNIV-RENNES INSA-GROUPE INSA-CVL UR1-MATH-NUM

430 View

300 Download

Practical and Privacy-Preserving TEE Migration

Abstract

Keywords

Domains

Dates and versions

Licence

Identifiers

Cite

Export

Collections

Altmetric

Share