Attestation-based policy enforcement for remote access
Proceedings of the 11th ACM conference on Computer and communications security
A Generic Attack on Checksumming-Based Software Tamper Resistance
SP '05 Proceedings of the 2005 IEEE Symposium on Security and Privacy
Property-based attestation for computing platforms: caring about properties, not mechanisms
NSPW '04 Proceedings of the 2004 workshop on New security paradigms
Trusted Computing: Providing Security for Peer-to-Peer Networks
P2P '05 Proceedings of the Fifth IEEE International Conference on Peer-to-Peer Computing
Design and implementation of a TCG-based integrity measurement architecture
SSYM'04 Proceedings of the 13th conference on USENIX Security Symposium - Volume 13
Proceedings of the 2007 ACM workshop on Scalable trusted computing
Hi-index | 0.00 |
Remote platform integrity attestation is a method by which a client attests its hardware and software configuration to a remote server. The goal of remote integrity platform attestation is to enable a remote challenger to determine the level of trust in the integrity of another attestator's platform configuration. However, the existing integrity reporting protocol is vulnerable to man-in-the-middle(MITM) attacks. In this paper, we describe this kind of attacks against protocols for remote platform integrity attestation, and propose a security-enhanced remote platform integrity attestation scheme for preventing man-in-the-middle attacks.