%0 Conference Proceedings
%T Practical and Privacy-Preserving TEE Migration
%+ Orange Labs [Caen]
%+ Laboratoire d'Informatique Fondamentale d'Orléans (LIFO)
%+ Institut National des Sciences Appliquées - Centre Val de Loire (INSA CVL)
%+ Confidentialité, Intégrité, Disponibilité et Répartition (CIDRE)
%+ Orange Labs [Issy les Moulineaux]
%A Arfaoui, Ghada
%A Lalande, Jean-François
%A Gharout, Saïd
%A Traoré, Jacques
%Z Part 3: Secure Devices and Execution Environment
%< avec comité de lecture
%( Lecture Notes in Computer Science
%B 9th Workshop on Information Security Theory and Practice (WISTP)
%C Heraklion, Greece
%Y Raja Naeem Akram
%Y Sushil Jajodia
%I Springer
%3 Information Security Theory and Practice
%V 9311
%P 153-168
%8 2015-08-24
%D 2015
%R 10.1007/978-3-319-24018-3_10
%K TEE
%K Credential transfer
%K Privacy
%Z Computer Science [cs]/Cryptography and Security [cs.CR]Conference papers
%X Running within the TEE, the Trusted Applications (TA) belong to diverse service providers. Each TA manipulates a profile, constituted of secret credentials and user’s private data. Normally, a user should be able to transfer his TEE profiles from a TEE to another compliant TEE. However, TEE profile migration implies security and privacy issues in particular for TEE profiles that require explicit agreement of the service provider. In this paper, we first present our perception of the deployment and implementation of a TEE: we organize the TEE into security domains with different roles and privileges. Based on this new model, we build a migration protocol of TEE profiles ensuring its confidentiality and integrity. To this end, we use a reencryption key and an authorization token per couple of devices, per service provider and per transfer. The proposed protocol has been successfully validated by AVISPA, an automated security protocol validation tool.
%G English
%Z TC 11
%Z WG 11.2
%2 https://inria.hal.science/hal-01183508/document
%2 https://inria.hal.science/hal-01183508/file/978-3-319-24018-3_10_Chapter.pdf
%L hal-01183508
%U https://inria.hal.science/hal-01183508
%~ INSTITUT-TELECOM
%~ UNIV-RENNES1
%~ CNRS
%~ INRIA
%~ UNIV-ORLEANS
%~ UNIV-UBS
%~ INSA-RENNES
%~ INRIA-RENNES
%~ IRISA
%~ IRISA_SET
%~ INRIA_TEST
%~ SUP_CIDRE
%~ TESTALAIN1
%~ IFIP-LNCS
%~ IFIP
%~ CENTRALESUPELEC
%~ IRISA-D1
%~ INRIA2
%~ IFIP-TC
%~ IFIP-WG
%~ IFIP-TC11
%~ UR1-HAL
%~ UR1-MATH-STIC
%~ IFIP-WISTP
%~ IFIP-WG11-2
%~ IFIP-LNCS-9311
%~ UR1-UFR-ISTIC
%~ CENTRALESUPELEC-SACLAY
%~ TEST-UNIV-RENNES
%~ TEST-UR-CSS
%~ CENTRALESUPELEC-SACLAY-VP
%~ UNIV-RENNES
%~ INRIA-RENGRE
%~ INSA-GROUPE
%~ INSA-CVL
%~ INSTITUTS-TELECOM
%~ UR1-MATH-NUM