Title :
A Security-Enhanced Remote Platform Integrity Attestation Scheme
Author :
Cheng, Song ; Bing, Liu ; Yang, Xin ; Yixian, Yang ; Li Zhongxian ; Han, Yin
Author_Institution :
State Key Lab. of Networking & Switching Technol., Beijing Univ. of Posts & Telecommun., Beijing, China
Abstract :
Remote platform integrity attestation is a method by which a client attests its hardware and software configuration to a remote server. The goal of remote integrity platform attestation is to enable a remote challenger to determine the level of trust in the integrity of another attestator´s platform configuration. However, the existing integrity reporting protocol is vulnerable to man-in-the-middle(MITM) attacks. In this paper, we describe this kind of attacks against protocols for remote platform integrity attestation, and propose a security-enhanced remote platform integrity attestation scheme for preventing man-in-the middle attacks.
Keywords :
client-server systems; cryptographic protocols; telecommunication security; client attestation; hardware configuration; integrity reporting protocol; man-in-the-middle attacks; remote server; security-enhanced remote platform integrity attestation; software configuration; Computer security; Cryptography; Hardware; Information security; Laboratories; National security; Privacy; Protection; Protocols; Telecommunication switching;
Conference_Titel :
Wireless Communications, Networking and Mobile Computing, 2009. WiCom '09. 5th International Conference on
Conference_Location :
Beijing
Print_ISBN :
978-1-4244-3692-7
Electronic_ISBN :
978-1-4244-3693-4
DOI :
10.1109/WICOM.2009.5302068
