Abstract
A key component in building trusted computing services is a highly secure anchor that serves as a Root-of-Trust (RoT). There are several works that conduct formal analysis on the security of such commodity RoTs (or parts of it), and also a few ones devoted to verifying the trusted computing service as a whole. However, most of the existing schemes try to verify security without differentiating the internal cryptography mechanisms of the underlying hardware token from the client application cryptography. This approach limits, to some extent, the reasoning that can be made about the level of assurance of the overall system by automated reasoning tools. In this work, we present a methodology that enables the use of formal verification tools towards verifying complex protocols using trusted computing. The focus is on reasoning about the overall application security, provided from the integration of the RoT services, and how these can translate to larger systems when the underlying cryptographic engine is considered perfectly secure. Using the Tamarin prover, we demonstrate the feasibility of our approach by instantiating it for a TPM-based remote attestation service, which is one of the core security services needed in today's increased attack landscape.
Original language | English |
---|---|
Title of host publication | Security and Trust Management |
Subtitle of host publication | 17th International Workshop, STM 2021, Darmstadt, Germany, October 8, 2021, Proceedings |
Editors | Rodrigo Roman, Jianying Zhou |
Publisher | Springer, Cham |
Pages | 163-184 |
Number of pages | 22 |
Edition | 1 |
ISBN (Electronic) | 9783030918590 |
ISBN (Print) | 9783030918583 |
DOIs | |
Publication status | Published - 8 Dec 2021 |
Publication series
Name | Lecture Notes in Computer Science |
---|---|
Publisher | Springer, Cham |
Volume | 13075 |
ISSN (Print) | 0302-9743 |
ISSN (Electronic) | 1611-3349 |
Bibliographical note
Publisher Copyright:© 2021, Springer Nature Switzerland AG.
Keywords
- Formal verification
- Remote attestation
- SAPiC
- TPM modelling
- Tamarin prover
- Trusted computing
ASJC Scopus subject areas
- Theoretical Computer Science
- General Computer Science