Skip to Main content Skip to Navigation
Conference papers

Foundations of Hardware-Based Attested Computation and Application to SGX

Abstract : Exciting new capabilities of modern trusted hardware technologies allow for the execution of arbitrary code within environments completely isolated from the rest of the system and provide cryptographic mechanisms for securely reporting on these executions to remote parties. Rigorously proving security of protocols that rely on this type of hardware faces two obstacles. The first is to develop models appropriate for the induced trust assumptions (e.g., what is the correct notion of a party when the peer one wishes to communicate with is a specific instance of an an outsourced program). The second is to develop scalable analysis methods, as the inherent stateful nature of the platforms precludes the application of existing modular analysis techniques that require high degrees of independence between the components. We give the first steps in this direction by studying three cryptographic tools which have been commonly associated with this new generation of trusted hardware solutions. Specifically, we provide formal security definitions, generic constructions and security analysis for attested computation, key-exchange for attestation and secure outsourced computation. Our approach is incremental: each of the concepts relies on the previous ones according to an approach that is quasi-modular. For example we show how to build a secure outsourced computation scheme from an arbitrary attestation protocol combined together with a key-exchange and an encryption scheme.
Document type :
Conference papers
Complete list of metadata

https://hal.inria.fr/hal-01417137
Contributor : Guillaume Scerri <>
Submitted on : Thursday, December 15, 2016 - 12:24:32 PM
Last modification on : Sunday, November 15, 2020 - 7:30:03 PM

Links full text

Identifiers

Collections

Citation

Guillaume Scerri, Bogdan Warinschi, Manuel Barbosa, Bernardo Portela. Foundations of Hardware-Based Attested Computation and Application to SGX. IEEE European Symposium on Security and Privacy, EuroS&P 2016, Mar 2016, Saarbrücken, Germany. pp.245-260, ⟨10.1109/EuroSP.2016.28⟩. ⟨hal-01417137⟩

Share

Metrics

Record views

206