A security-enhanced remote platform integrity attestation scheme

  • Authors:

  • Song Cheng;Liu Bing;Xin Yang;Yang Yixian;Li Zhongxian;Yin Han

  • Affiliations:

  • Inf. Security Center, State Key Lab. of Networking and Switching Techn., Beijing Univ. of Posts and Telecomm., China and Key Lab. of network and inf. attack & defence techn. of MOE, Beijing Univ. ...;Inf. Security Center, State Key Lab. of Networking and Switching Techn., Beijing Univ. of Posts and Telecomm., China and Key Lab. of network and inf. attack & defence techn. of MOE, Beijing Univ. ...;Inf. Security Center, State Key Lab. of Networking and Switching Techn., Beijing Univ. of Posts and Telecomm., China and Key Lab. of network and inf. attack & defence techn. of MOE, Beijing Univ. ...;Inf. Security Center, State Key Lab. of Networking and Switching Techn., Beijing Univ. of Posts and Telecomm., China and Key Lab. of network and inf. attack & defence techn. of MOE, Beijing Univ. ...;National Cybernet Security Ltd, Beijing, China;Huawei Technology Ltd, Beijing, China

  • Venue:
  • WiCOM'09 Proceedings of the 5th International Conference on Wireless communications, networking and mobile computing
  • Year:
  • 2009

Quantified Score

Hi-index 0.00

Visualization

Abstract

Remote platform integrity attestation is a method by which a client attests its hardware and software configuration to a remote server. The goal of remote integrity platform attestation is to enable a remote challenger to determine the level of trust in the integrity of another attestator's platform configuration. However, the existing integrity reporting protocol is vulnerable to man-in-the-middle(MITM) attacks. In this paper, we describe this kind of attacks against protocols for remote platform integrity attestation, and propose a security-enhanced remote platform integrity attestation scheme for preventing man-in-the-middle attacks.