New results for timing-based attestation

Proceedings - IEEE Symposium on Security and Privacy

Volumn , Issue , 2012, Pages 239-253

  Kovah, Xeno ^a   Kallenberg, Corey ^a   Weathers, Chris ^a   Herzog, Amy ^a   Albin, Matthew ^a   Butterworth, John ^a  

^a MITRE CORPORATION   (United States)

Author keywords

remote attestation; software based attestation; timing based attestation; TOCTOU attack; trusted platform module

Indexed keywords

HARDWARE SECURITY; TRUSTED COMPUTING;

CHECK TIME; CODE INTEGRITY; CONDITION; NEW RESULTS; REMOTE ATTESTATION; SOFTWARE-BASED ATTESTATION; SYSTEMS PERFORMANCE; TIME OF CHECK, TIME OF USE ATTACK; TIME OF USE; TIMING-BASED ATTESTATION;

TIMING CIRCUITS;

EID: 84878354800     PISSN: 10816011     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/SP.2012.45     Document Type: Conference Paper

References (28)

1. A. M. Azab, P. Ning, Z. Wang, X. Jiang, X. Zhang, and N. C. Skalsky. Hypersentry: enabling stealthy in-context measurement of hypervisor integrity. In Proceedings of the ACM conference on Computer and Communications Security, CCS, pages 38-49, 2010.
2. S. Bratus, N. D'Cunha, E. Sparks, and S. W. Smith. TOC-TOU, traps, and trusted computing. In Proceedings of the International Conference on Trusted Computing and Trust in Information Technologies, Trust, pages 14-32, 2008.
3. C. Castelluccia, A. Francillon, D. Perito, and C. Soriente. On the difficulty of software-based attestation of embedded devices. In Proceedings of the ACM conference on Computer and Communications Security, CCS, pages 400-409, 2009.
4. Y. Choi, J. Kang, and D. Nyang. Proactive code verification protocol in wireless sensor network. In Proceedings of the International Conference on Computational Science and its Applications - Volume Part II, ICCSA, pages 1085-1096, 2007.
5. J. A. Garay and L. Huelsbergen. Software integrity protection using timed executable agents. In Proceedings of the ACM Symposium on Information, Computer and Communications Security, ASIACCS, pages 189-200, 2006.
6. Geeks3D. Aogenmark 1.3.0: Simple multi-core cpu benchmark. 2011, http://www.geeks3d.com/20110513/aogenmark-1-3-0-simple-multi-core-cpu-benchmark. Accessed: 10/21/2011.
7. M. Jakobsson and K.-A. Johansson. Practical and secure software-based attestation. In Workshop on Lightweight Security Privacy: Devices, Protocols and Applications (LightSec), pages 1-9, March 2011.
8. X. Jiang, X. Wang, and D. Xu. Stealthy malware detection through VMM-based "out-of-the-box" semantic view reconstruction. In Proceedings of the ACM conference on Computer and Communications Security, CCS, pages 128-138, 2007.
9. Y. Li, J. M. McCune, and A. Perrig. SBAP: Software-Based Attestation for Peripherals. In Proceedings of the 3rd International Conference on Trust and Trustworthy Computing (Trust), June 2010.
10. Y. Li, J. M. McCune, and A. Perrig. VIPER: Verifying the integrity of peripherals' firmware. In Proceedings of the ACM Conference on Computer and Communications Security (CCS), October 2011.
11. J. M. McCune, B. Parno, A. Perrig, Michael K. Reiter, and Hiroshi Isozaki. Flicker: An execution infrastructure for tcb minimization. In Proceedings of the ACM European Conference in Computer Systems (EuroSys), April 2008.
12. Microsoft. Ndis drivers (ndis 5.1) (windows driver kit). September 7th 2011, http://msdn.microsoft.com/en-us/Library/ff556938(v=VS.85).aspx. Accessed: 11/01/2011.
13. W. D. Norcott and D. Capps. Iozone filesystem benchmark. 20106, http://www.iozone.org/. Accessed: 10/21/2011.
14. A. Perrig and L. van Doorn. Refutation of on the difficulty of software-based attestation of embedded devices. 2010, http://sparrow.ece.cmu. edu/group/pub/perrig-vandoorn-refutation.pdf. Accessed: 11/01/2011.
15. N. L. Petroni, Jr., T. Fraser, J. Molina, and W. A. Arbaugh. Copilot - a coprocessor-based kernel runtime integrity monitor. In Proceedings of the 13th conference on USENIX Security Symposium - Volume 13, SSYM, pages 13-13, 2004.
16. D. Schellekens, B.Wyseur, and B. Preneel. Remote attestation on legacy operating systems with trusted platform modules. Electron. Notes Theor. Comput. Sci., 197:59-72, February 2008. (Pubitemid 351253793)
17. A. Seshadri. A Software Primitive for Externally-verifiable Untampered Execution and its Applications to Securing Computing Systems. PhD thesis, Carnegie Mellon University, 2009.
18. A. Seshadri, M. Luk, A. Perrig, L. van Doorn, and P. Khosla. SCUBA: Secure code update by attestation in sensor networks. In Proceedings of the ACM workshop on Wireless security, WiSe, pages 85-94, 2006.
19. A. Seshadri, M. Luk, N. Qu, and A. Perrig. Secvisor: a tiny hypervisor to provide lifetime kernel code integrity for commodity oses. In Proceedings of ACM SIGOPS symposium on Operating systems principles, SOSP, pages 335-350, 2007.
20. A. Seshadri, M. Luk, E. Shi, A. Perrig, L. van Doorn, and P. Khosla. Pioneer: verifying code integrity and enforcing untampered code execution on legacy systems. In Proceedings of the ACM symposium on Operating systems principles, SOSP, pages 1-16, 2005.
21. A. Seshadri, A. Perrig, L. van Doorn, and P. Khosla. SWATT: Software-based attestation for embedded devices. In Proceedings of the IEEE Symposium on Security and Privacy, May 2004.
22. A. Shah, A. Perrig, and B. Sinopoli. Mechanisms to provide integrity in SCADA and PCS devices. In Proceedings of the International Workshop on Cyber-Physical Systems - Challenges and Applications (CPS-CA), June 2008.
23. M. Shaneck, K. Mahadevan, V. Kher, and Y. Kim. Remote software-based attestation for wireless sensors. In ESAS, pages 27-41, 2005.
24. U. Shankar, M. Chew, and J. D. Tygar. Side effects are not sufficient to authenticate software. In Proceedings of the conference on USENIX Security Symposium, SSYM, pages 7-7, 2004.
25. L. Ventura. Iperf on windows. 2010, http://linhost.info/2010/02/iperf-on- windows/. Accessed: 10/21/2011.
26. Zhi Wang, Xuxian Jiang, Weidong Cui, and Peng Ning. Countering kernel rootkits with lightweight hook protection. In Proceedings of the 16th ACM conference on Computer and communications security, CCS '09, pages 545-554, New York, NY, USA, 2009. ACM.
27. G. Wurster, P. C. van Oorschot, and A. Somayaji. A generic attack on checksumming-based software tamper resistance. In Proceedings of the IEEE Symposium on Security and Privacy, pages 127-138, 2005.
28. Q. Yan, J. Han, Y. Li, R. H. Deng, and T. Li. A software-based root-of-trust primitive on multicore platforms. In Proceedings of the ACM Symposium on Information, Computer and Communications Security, ASIACCS, pages 334-343, 2011.