Software Based Remote Attestation for OS Kernel and User Applications

Author

Srinivasan, Raghunathan ; Dasgupta, Partha ; Gohad, Tushar

Author_Institution

Arizona State Univ., Tempe, AZ, USA

fYear

2011

fDate

9-11 Oct. 2011

Firstpage

1048

Lastpage

1055

Abstract

This paper describes a software based remote attestation scheme for providing a root of trust on an untrusted computing platform. To provide a root of trust, this work focuses on obtaining the integrity of the OS running on the platform, and then leverages the techniques to obtain the integrity of a user application. A trusted external entity issues a challenge to the client platform. The challenge is executable code which the client must execute, and the code generates results which are sent to the external entity. These results provide the external entity an assurance as to whether the client application and the OS at the client end are in pristine condition. This work also presents a technique where it can be verified that the application which was attested, did not get replaced by a different application once the challenge got completed.

Keywords

operating system kernels; trusted computing; OS kernel; client application; software based remote attestation; trusted external entity; untrusted computing; user application; Hardware; Kernel; Memory management; Servers; Software measurement; Remote attestation; code injection; device drivers; integrity measurement;

fLanguage

English

Publisher

ieee

Conference_Titel

Privacy, Security, Risk and Trust (PASSAT) and 2011 IEEE Third Inernational Conference on Social Computing (SocialCom), 2011 IEEE Third International Conference on

Conference_Location

Boston, MA

Print_ISBN

978-1-4577-1931-8

Type

conf

DOI

10.1109/PASSAT/SocialCom.2011.76

Filename

6113258