%0 Conference Proceedings
%T Remote Credential Management with Mutual Attestation for Trusted Execution Environments
%+ Royal Holloway [University of London] (RHUL)
%A Shepherd, Carlton
%A Akram, Raja, Naeem
%A Markantonakis, Konstantinos
%Z Part 5: Cybersecurity
%< avec comité de lecture
%( Lecture Notes in Computer Science
%B 12th IFIP International Conference on Information Security Theory and Practice (WISTP)
%C Brussels, Belgium
%Y Olivier Blazy
%Y Chan Yeob Yeun
%I Springer International Publishing
%3 Information Security Theory and Practice
%V LNCS-11469
%P 157-173
%8 2018-12-10
%D 2018
%R 10.1007/978-3-030-20074-9_12
%K Credential management
%K TEEs
%K Security protocols
%Z Computer Science [cs]Conference papers
%X Trusted Execution Environments (TEEs) are rapidly emerging as a root-of-trust for protecting sensitive applications and data using hardware-backed isolated worlds of execution. TEEs provide robust assurances regarding critical algorithm execution, tamper-resistant credential storage, and platform integrity using remote attestation. However, the challenge of remotely managing credentials between TEEs remains largely unaddressed in existing literature. In this work, we present novel protocols using mutual attestation for supporting four aspects of secure remote credential management with TEEs: backups, updates, migration, and revocation. The proposed protocols are agnostic to the underlying TEE implementation and subjected to formal verification using Scyther, which found no attacks.
%G English
%Z TC 11
%Z WG 11.2
%2 https://hal.science/hal-02294612/document
%2 https://hal.science/hal-02294612/file/484602_1_En_12_Chapter.pdf
%L hal-02294612
%U https://hal.science/hal-02294612
%~ IFIP-LNCS
%~ IFIP
%~ IFIP-TC
%~ IFIP-TC11
%~ IFIP-WISTP
%~ IFIP-WG11-2
%~ IFIP-LNCS-11469