Dynamic policy discovery with remote attestation

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 3921 LNCS, Issue , 2006, Pages 111-125

  Pitcher, Corin ^a   Riely, James ^a  

^a DEPAUL UNIVERSITY   (United States)

Author keywords

calculus; Code identity based access control; Key establishment; Next Generation Secure Computing Base; Policy establishment; Remote attestation

Indexed keywords

Π-CALCULUS; CODE-IDENTITY BASED ACCESS CONTROL; KEY ESTABLISHMENT; NEXT GENERATION SECURE COMPUTING BASE; POLICY ESTABLISHMENT; REMOTE ATTESTATION;

COMPUTATION THEORY; COMPUTER HARDWARE; COMPUTER SYSTEMS PROGRAMMING; DIFFERENTIATION (CALCULUS); SECURITY SYSTEMS;

DYNAMIC PROGRAMMING;

EID: 33745788969     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/11690634_8     Document Type: Conference Paper

References (51)

1. M. Abadi. Secrecy by typing in security protocols. J. ACM, 46(5), 1999.
2. M. Abadi. Trusted computing, trusted third parties, and verified communications. In SEC2004:19th IFIP International Information Security Conference, 2004.
3. M. Abadi and B. Blanchet. Secrecy types for asymmetric communication. Theoretical Computer Science, 298(3), 2003.
4. M. Abadi, L. Cardelli, B. Pierce, and G. Plotkin. Dynamic typing in a statically typed language. ACM Trans. Program. Lang. Syst., 13(2), 1991.
5. M. Abadi and C. Fournet. Mobile values, new names, and secure communication. In POPL '01, 2001.
6. M. Abadi and C. Fournet. Access control based on execution history. In Proceedings of the 10th Annual Network and Distributed System Security Symposium, 2003.
7. M. Abadi, C. Fournet, and G. Gonthier. Authentication primitives and their compilation. In POPL '00, 2000.
8. M. Abadi, C. Fournet, and G. Gonthier. Secure implementation of channel abstractions. Inf. Comput., 174(1), 2002.
9. M. Abadi and A. D. Gordon. A calculus for cryptographic protocols: The spi calculus. Information and Computation, 148(1), 1999.
10. M. Abadi and T. Wobber. A logical account of NGSCB. In FORTE '04, 2004.
11. R. M. Amadio, I. Castellani, and D. Sangiorgi. On bisimulations of the asynchronous π-calculus. Theor. Comput. Sci., 195(2), 1998.
12. R. Anderson. Trusted Computing'Frequently Asked Questions. http://www.cl.cam.ac.uk/-rja14/tcpa-faq.html, 2003. Version 1.1.
13. R. Anderson and M. Kuhn. Tamper resistance - a cautionary note. In Second USENIX Workshop on Electronic Commerce Proceedings, 1996.
14. W. A. Arbaugh. Improving the TCPA specification. IEEE Computer, 2002.
15. W. A. Arbaugh, D. J. Farber, and J. M. Smith. A secure and reliable bootstrap architecture. In IEEE Symposium on Security and Privacy, 1997.
16. G. Berry and G. Boudol. The chemical abstract machine. In POPL '90, 1990.
17. M. Bugliesi, S. Crafa, A. Prelic, and V. Sassone. Secrecy in untrusted networks. In ICALP '03, 2003.
18. M. Bugliesi, R. Focardi, and M. Maffei. Compositional analysis of authentication protocols. In ESOP, 2004.
19. M. Bugliesi, R. Focardi, and M. Maffei. Analysis of typed analyses of authentication protocols. In CSFW, 2005.
20. L. Cardelli. Program fragments, linking, and modularization. In POPL '97, 1997.
21. C. Fournet, A. Gordon, and S. Maffeis. A type discipline for authorization policies. In ESOP '05, 2005.
22. A. D. Gordon and A. S. A. Jeffrey. Authenticity by typing for security protocols. J. Computer Security, 11(4), 2003.
23. A. D. Gordon and A. S. A. Jeffrey. Types and effects for asymmetric cryptographic protocols. J. Computer Security, 12(3/4), 2004.
24. A. D. Gordon and A. S. A. Jeffrey. Secrecy despite compromise: Types, cryptography, and the pi-calculus. In CONCUR, 2005.
25. C. Haack and A. S. A. Jeffrey. Pattern-matching spi-calculus. In Proc. IFIP WG 1.7 Workshop on Formal Aspects in Security and Trust, 2004.
26. V. Haldar, D. Chandra, and M. Franz. Semantic remote attestation: A virtual machine directed approach to trusted computing. In USENIX VM, 2004.
27. V. Haldar and M. Franz. Symmetric behavior-based trust: A new paradigm for internet computing. In New Security Paradigms Workshop, 2004.
28. M. Hennessy and J. Riely. Resource access control in systems of mobile agents. Information and Computation, 173, 2002.
29. K. Honda and M. Tokoro. On asynchronous communication semantics. In ECOOP '91: Proceedings of the Workshop on Object-Based Concurrent Computing, 1992.
30. K. Honda, V. T. Vasconcelos, and N. Yoshida. Secure information flow as typed process behaviour. In ESOP '00, 2000.
31. A. Huang. Hacking the Xbox. Xenatera Press, 2003.
32. C. Irvine and T. Levin. A cautionary note regarding the data integrity capacity of certain secure systems. In Integrity, Internal Control and Security in Information Systems, 2002.
33. X. Leroy and M. Mauny. Dynamics in ML. In FPCA, 1991.
34. N. Li and J. Mitchell. RT: A role-based trust-management framework. In DARPA Information Survivability Conference and Exposition (DISCEX III), 2003.
35. D. Lie, C. Thekkath, P. Lincoln, M. Mitchell, D. Boneh, J. Mitchell, and M. Horowitz. Architectural support for copy and tamper resistant software. In ASPLOS-IX, 2000.
36. D. Lie, C. A. Thekkath, and M. Horowitz. Implementing an untrusted operating system on trusted hardware. In 19th ACM Symposium on Operating Systems Principles, 2003.
37. Microsoft. Longhorn developer preview documentation. Distributed at Microsoft's Professional Developers Conference in Los Angeles, 2003.
38. Microsoft. NGSCB: TCB and software authentication, 2003.
39. Microsoft. Security model for the Next-Generation Secure Computing Base, 2003.
40. R. Milner, J. Parrow, and D. Walker. A calculus of mobile processes, I. Inf. Comput., 100(1), 1992.
41. M. Odersky. Polarized name passing. In FST-TCS '95, 1995.
42. S. Pearson, editor. Trusted Computing Platforms: TCPA Technology in Context. Prentice Hall, 2002.
43. J. Riely and M. Hennessy. Trust and partial typing in open systems of mobile agents. J. Automated Reasoning, 31(3-4), 2003.
44. A.-R. Sadeghi and C. Stüble. Property-based attestation for computing platforms: Caring about properties, not mechanisms. In New Security Paradigms Workshop, 2004.
45. R. Sailer, X. Zhang, T. Jaeger, and L. van Doorn. Design and implementation of a TCG-based integrity measurement architecture. In 13th USENIX Security Symposium, 2004.
46. R. Sandhu and X. Zhang. Peer-to-peer access control architecture using trusted computing technology. In SACMAT, 2005.
47. A. Seshadri, A. Perrig, L. van Doorn, and P. Khosla. SWATT: SoftWare-based ATTestation for embedded devices. In IEEE Symposium on Security and Privacy, 2004.
48. S. Smith and S. Weingart. Building a high-performance, programmable secure coprocessor. Computer Networks, 31, 1999. Special Issue on Computer Network Security.
49. K. Thompson. Reflections on trusting trust. CACM, 27(8), 1984.
50. Trusted Computing Group. Trusted Computing Platform Alliance: Main specification, version 1.1b. http://www.trustedcomputinggroup.org, 2003.
51. D. S. Wallach, A. W. Appel, and E. W. Fellen. SAFKASI: a security mechanism for language-based systems. ACM Trans. Softw. Eng. Methodol., 9(4), 2000.