VRASED: Verifiable Remote Attestation for Simple Embedded Devices

2019/03/19 16:00-17:00

VRASED: Verifiable Remote Attestation for Simple Embedded Devices

19.03.2019, 16:00 – 17:00

Speaker: Prof. Gene Tsudik | Location: Mornewegstraße 32 (S4|14), Room 3.1.01, Darmstadt

Organizer: Prof. Ahmad Sadeghi

Abstract
Remote Attestation (RA) is a security service that allows a trusted verifier (Vrf) to measure the software state of an untrusted remote device -- Prv. If correctly implemented, RA allows Vrf to remotely detect if Prv is in an illegal or compromised state. Although several RA architectures have been proposed, little attention has been devoted to their verifiability and security guarantees that can be derived through formal verification of RA architectures.

In this talk we introduce VRASED: Verifiable Remote Attestation for Simple Embedded Devices. VRASED instantiates a hybrid (HW/SW) RA co-design aimed at low-end embedded systems, e.g., simple IoT devices. Since VRASED security properties must be jointly guaranteed by HW and SW, verification is a challenging task, which has never been attempted before in the context of RA. We believe that VRASED is the first formally verified RA scheme. It is also the first formal verification of a HW/SW implementation of any security service. VRASED’s publicly available implementation was deployed on the Basys3 FPGA and requires 16x fewer Look-Up Tables and 36x fewer registers than the cheapest pure HW-based design.

Short bio
Gene Tsudik is a Chancellor's Professor of Computer Science at the University of California, Irvine (UCI). He obtained his PhD in Computer Science from USC in 1991. Before coming to UCI in 2000, he was at IBM Zurich Research Laboratory (1991-1996) and USC/ISI (1996-2000). His research interests include many topics in security, privacy and applied cryptography. Gene Tsudik is a Fulbright Scholar, Fulbright Specialist (twice), a fellow of ACM, a fellow of IEEE, a fellow of AAAS, and a foreign member of Academia Europaea. From 2009 to 2015 he served as Editor-in-Chief of ACM Transactions on Information and Systems Security (TISSEC, renamed to TOPS in 2016). Gene was the recipient of 2017 ACM SIGSAC Outstanding Contribution Award. He is also the author of the first crypto-poem published as a refereed paper. He suffers from two incurable academic diseases: “Research ADHD” and “Munchausen-without-Proxy”.

go to list