TY - GEN
T1 - Remote Credential Management with Mutual Attestation for Trusted Execution Environments
AU - Shepherd, Carlton
AU - Akram, Raja Naeem
AU - Markantonakis, Konstantinos
PY - 2019/5/12
Y1 - 2019/5/12
N2 - Trusted Execution Environments (TEEs) are rapidly emerging as a root-of-trust for protecting sensitive applications and data using hardware-backed isolated worlds of execution. TEEs provide robust assurances regarding critical algorithm execution, tamper-resistant credential storage, and platform integrity using remote attestation. However, the challenge of remotely managing credentials between TEEs remains largely unaddressed in existing literature. In this work, we present novel protocols using mutual attestation for supporting four aspects of secure remote credential management with TEEs: backups, updates, migration, and revocation. The proposed protocols are agnostic to the underlying TEE implementation and subjected to formal verification using Scyther, which found no attacks.
AB - Trusted Execution Environments (TEEs) are rapidly emerging as a root-of-trust for protecting sensitive applications and data using hardware-backed isolated worlds of execution. TEEs provide robust assurances regarding critical algorithm execution, tamper-resistant credential storage, and platform integrity using remote attestation. However, the challenge of remotely managing credentials between TEEs remains largely unaddressed in existing literature. In this work, we present novel protocols using mutual attestation for supporting four aspects of secure remote credential management with TEEs: backups, updates, migration, and revocation. The proposed protocols are agnostic to the underlying TEE implementation and subjected to formal verification using Scyther, which found no attacks.
U2 - 10.1007/978-3-030-20074-9_12
DO - 10.1007/978-3-030-20074-9_12
M3 - Conference contribution
SN - 978-3-030-20073-2
T3 - Lecture Notes in Computer Science
SP - 157
EP - 173
BT - 12th IFIP International Conference on Information Security Theory and Practice (WISTP '18)
PB - Springer
T2 - 12th IFIP International Conference on Information Security Theory and Practice
Y2 - 10 December 2018 through 11 December 2018
ER -