Title :
Software Complexity Based Remote Attestation
Author :
Xiao-Yong, Li ; Zhen, Han ; Chang-xiang, Shen
Author_Institution :
Inf. Security Archit. Center., Beijing Jiaotong Univ.
fDate :
Aug. 30 2006-Sept. 1 2006
Abstract :
The trustworthiness given to remote platform by service provider is the base to network access authorization, but it´s hard for service provider to get the real state of remote platforms without hardware support such as built-in TPM, and therefore to trust them. This paper presents a remote attestation mechanism in which a trusted agent is assured to measure and report to the service provider the state related information of its resided platform. To achieve this remote attestation process in an open environment without hardware support, increasing the software complexity is an effective choice. Software obfuscation can make the program more complicated for the software reverse engineering hard to work, and if the agent can also work independently to the services supplied by the resided platform, it can thus be trusted by its distributor during a significant period
Keywords :
authorisation; formal verification; reverse engineering; software metrics; network access authorization; open environment; service provider; software complexity; software obfuscation; software reverse engineering; trustworthy remote attestation mechanism; Authorization; Computer architecture; Computer networks; Data security; Hardware; Information security; Reverse engineering; Service oriented architecture;
Conference_Titel :
Innovative Computing, Information and Control, 2006. ICICIC '06. First International Conference on
Conference_Location :
Beijing
Print_ISBN :
0-7695-2616-0
DOI :
10.1109/ICICIC.2006.522
