Foundations of Hardware-Based Attested Computation and Application to SGX

Abstract : Exciting new capabilities of modern trusted hardware technologies allow for the execution of arbitrary code within environments completely isolated from the rest of the system and provide cryptographic mechanisms for securely reporting on these executions to remote parties. Rigorously proving security of protocols that rely on this type of hardware faces two obstacles. The first is to develop models appropriate for the induced trust assumptions (e.g., what is the correct notion of a party when the peer one wishes to communicate with is a specific instance of an an outsourced program). The second is to develop scalable analysis methods, as the inherent stateful nature of the platforms precludes the application of existing modular analysis techniques that require high degrees of independence between the components. We give the first steps in this direction by studying three cryptographic tools which have been commonly associated with this new generation of trusted hardware solutions. Specifically, we provide formal security definitions, generic constructions and security analysis for attested computation, key-exchange for attestation and secure outsourced computation. Our approach is incremental: each of the concepts relies on the previous ones according to an approach that is quasi-modular. For example we show how to build a secure outsourced computation scheme from an arbitrary attestation protocol combined together with a key-exchange and an encryption scheme.
Type de document :
Communication dans un congrès
IEEE European Symposium on Security and Privacy, EuroS&P 2016, Mar 2016, Saarbrücken, Germany. IEEE, pp.245-260, 2016, IEEE European Symposium on Security and Privacy, EuroS&P 2016, Saarbrücken, Germany, March 21-24, 2016. 〈10.1109/EuroSP.2016.28〉
Liste complète des métadonnées

https://hal.inria.fr/hal-01417137
Contributeur : Guillaume Scerri <>
Soumis le : jeudi 15 décembre 2016 - 12:24:32
Dernière modification le : vendredi 16 décembre 2016 - 01:03:42

Identifiants

Collections

Citation

Guillaume Scerri, Bogdan Warinschi, Manuel Barbosa, Bernardo Portela. Foundations of Hardware-Based Attested Computation and Application to SGX. IEEE European Symposium on Security and Privacy, EuroS&P 2016, Mar 2016, Saarbrücken, Germany. IEEE, pp.245-260, 2016, IEEE European Symposium on Security and Privacy, EuroS&P 2016, Saarbrücken, Germany, March 21-24, 2016. 〈10.1109/EuroSP.2016.28〉. 〈hal-01417137〉

Partager

Métriques

Consultations de la notice

64