RABBIF: Remote Attestation Based on Behavior and Information Flow

As an important feature, remote attestation was introduced in TCG specifications to attest whether a remote platform will behave in a particular manner for a specific purpose. However, either behavior based measurements or information flow based ones have problems as we have analyzed. In this paper, we present a novel remote attestation project, named Remote Attestation Based on Behavior and Information Flow (RABBIF), which combines the behavior-based integrity measurement with information flow theory to check both attesting system´s security policy and its actual behaviors. RABBIF introduces credit mechanisms into the remote attestation and extends the integrity measurement to trust measurement with considering not only system integrity but also information confidentiality. In this project, the challenger is designed to define integrity level by itself according to its practical security requirements and apply these levels to the information flow measurement. Our scheme is moderate-grained and has more flexibility and practicability.