Full Program
Summary:
With the rapid expansion of computational resources from the core cloud towards the far-edge, we face new security and trust assurance challenges. To provide stronger guarantees on the resources serving sensitive traffic workloads, it is necessary to provide mechanisms to verify both software and hardware integrity. Towards this direction, remote attestation is a promising mechanism that allows a third party to ensure a remote entity's integrity. However, many of the existing attestation solutions have strong assumptions on verifying entity's trustworthiness, thus not allowing for privacy-preserving integrity correctness. Furthermore, they suffer from scalability and efficiency issues. This paper presents a lightweight dynamic configuration integrity verification that enables inter and intra-device attestation without disclosing any configuration information and can be applied on both resource-constrained edge devices and cloud services. Our goal is to enhance run-time software integrity and trustworthiness with a scalable solution eliminating the need for federated infrastructure trust.Author(s):
Nikolaos Fotos
Spain
Stefanos Vasileiadis
Greece
Thanassis Giannetsos
Greece