Simulated social control for secure Internet commerce
NSPW '96 Proceedings of the 1996 workshop on New security paradigms
A logic for uncertain probabilities
International Journal of Uncertainty, Fuzziness and Knowledge-Based Systems
Trust Metrics, Models and Protocols for Electronic Commerce Transactions
ICDCS '98 Proceedings of the The 18th International Conference on Distributed Computing Systems
Property-based attestation for computing platforms: caring about properties, not mechanisms
NSPW '04 Proceedings of the 2004 workshop on New security paradigms
Property Based Attestation and Trusted Computing: Analysis and Challenges
NSS '09 Proceedings of the 2009 Third International Conference on Network and System Security
Decentralized trust management
SP'96 Proceedings of the 1996 IEEE conference on Security and privacy
A survey of trust in internet applications
IEEE Communications Surveys & Tutorials
Editorial: Special Section: Trusted computing
Future Generation Computer Systems
Certainlogic: a logic for modeling trust and uncertainty
TRUST'11 Proceedings of the 4th international conference on Trust and trustworthy computing
Addressing cloud computing security issues
Future Generation Computer Systems
Hi-index | 0.00 |
Binary attestation in trusted computing platforms provide the ability to reason about the state of a system using hash measurements. Property based attestation, an extension of binary attestation enables more meaningful attestation by abstracting low level binary values to high level security properties or functions of systems. In this paper, we propose TESM: A Trust Enhanced Secure Model for trusted computing platforms. We argue that given the nature of both binary and property based attestation mechanisms, an attestation requester cannot be absolutely certain if an attesting platform will behave as it is expected to behave. TESM uses a hybrid trust model based on subjective logic to combine 'hard' trust from measurements and properties and 'soft' trust from past experiences and recommendations to reduce such uncertainties. We believe that such a model will enable better reasoning about the trustworthiness of attesting platforms and thereby facilitate better security decision making.