{"corpus_id":160006011,"paper_sha":"7a0dc9364d910902fb87d7bf2dcc8604fd89e163","doi":"10.1109/ICDCS.2019.00120","arxiv_id":null,"pmid":null,"pmcid":null,"mag_id":2955653233,"dblp_id":"conf/icdcs/NunesD0RST19","acl_id":null,"title":"Towards Systematic Design of Collective Remote Attestation Protocols","year":2019,"publication_date":"2019-07-01","venue":"IEEE International Conference on Distributed Computing Systems","journal":{"name":"2019 IEEE 39th International Conference on Distributed Computing Systems (ICDCS)","pages":"1188-1198","volume":null},"journal_issn":null,"journal_title":null,"publication_types":["JournalArticle","Conference"],"pubmed_pub_types":null,"s2_fields_of_study":["Computer Science","Engineering"],"reference_count":32,"citation_count":21,"influential_citation_count":3,"is_open_access":false,"arxiv_categories":null,"arxiv_license":null,"arxiv_journal_ref":null,"mesh_headings":null,"chemicals":null,"comments_corrections":null,"source_flags":1,"s2_open_access_pdf_url":null,"s2_open_access_landing_url":null,"s2_open_access_license":null,"s2_open_access_status":null,"pmc_open_access_pdf_url":null,"pmc_open_access_landing_url":null,"pmc_open_access_license":null,"pmc_open_access_status":null,"unpaywall_open_access_pdf_url":null,"unpaywall_open_access_landing_url":null,"unpaywall_open_access_license":null,"unpaywall_open_access_status":null,"abstract":"Networks of and embedded (IoT) devices are becoming increasingly popular, particularly, in settings such as smart homes, factories and vehicles. These networks can include numerous (potentially diverse) devices that collectively perform certain tasks. In order to guarantee overall safety and privacy, especially in the face of remote exploits, software integrity of each device must be continuously assured. This can be achieved by Remote Attestation (RA) - a security service for reporting current software state of a remote and untrusted device. While RA of a single device is well understood, collective RA of large numbers of networked embedded devices poses new research challenges. In particular, unlike single-device RA, collective RA has not benefited from any systematic treatment. Thus, unsurprisingly, prior collective RA schemes are designed in an ad hoc fashion. Our work takes the first step toward systematic design of collective RA, in order to help place collective RA onto a solid ground and serve as a set of design guidelines for both researchers and practitioners. We explore the design space for collective RA and show how the notions of security and effectiveness can be formally defined according to a given application domain. We then present and evaluate a concrete collective RA scheme systematically designed to satisfy these goals.","claims":[{"public_id":"cl_1d09ce5fb33f5c9fa1c863f079655fdf","status":"active","text":"A concrete collective remote attestation scheme is presented and evaluated using the proposed systematic design approach.","confidence":0.94,"contributors":[{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["extraction"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/claims/cl_1d09ce5fb33f5c9fa1c863f079655fdf"},{"public_id":"cl_0fe1982420f37c3046c4cd46528b8a97","status":"active","text":"Collective remote attestation has lacked systematic treatment and prior collective schemes were designed in an ad hoc fashion.","confidence":0.96,"contributors":[{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["extraction"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/claims/cl_0fe1982420f37c3046c4cd46528b8a97"},{"public_id":"cl_b5ef673c6a3c557b25daa70cf2fc18bf","status":"active","text":"Security and effectiveness for collective remote attestation can be formally defined relative to a given application domain.","confidence":0.93,"contributors":[{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["extraction"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/claims/cl_b5ef673c6a3c557b25daa70cf2fc18bf"}],"concepts":[{"public_id":"co_0c34cecd33381518dc210b605cd66226","status":"active","name":"effectiveness","description":"A property that characterizes how well a collective remote attestation protocol achieves its intended attestation goals in the application domain.","types":["property"],"aliases":[],"contributors":[{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["extraction"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/concepts/co_0c34cecd33381518dc210b605cd66226"},{"public_id":"co_1834cdbb611916ca72110cabddff105d","status":"active","name":"ad hoc fashion","description":"An unsystematic design style in which collective remote attestation schemes are developed case by case.","types":["design style"],"aliases":[],"contributors":[{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["extraction"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/concepts/co_1834cdbb611916ca72110cabddff105d"},{"public_id":"co_195a07e1d18e82b132bd8553684c165f","status":"active","name":"security","description":"A property that characterizes whether a collective remote attestation protocol resists compromise in the intended application domain.","types":["property"],"aliases":[],"contributors":[{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["extraction"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/concepts/co_195a07e1d18e82b132bd8553684c165f"},{"public_id":"co_543c62d76bad9851f2adb4691cc05b18","status":"active","name":"application domain","description":"The target setting in which collective remote attestation is deployed and evaluated.","types":["context"],"aliases":[],"contributors":[{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["extraction"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/concepts/co_543c62d76bad9851f2adb4691cc05b18"},{"public_id":"co_7feefab58cfbd94fc94f0cd95e064abe","status":"active","name":"concrete collective RA scheme","description":"A specific collective remote attestation protocol constructed and evaluated in the work.","types":["security protocol"],"aliases":[],"contributors":[{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["extraction"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/concepts/co_7feefab58cfbd94fc94f0cd95e064abe"},{"public_id":"co_805538692f12c639784b3f75e95a3588","status":"active","name":"systematic design approach","description":"A principled method for constructing collective remote attestation schemes to satisfy defined goals.","types":["method"],"aliases":[],"contributors":[{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["extraction"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/concepts/co_805538692f12c639784b3f75e95a3588"},{"public_id":"co_a1d63df17ea6f62b18f6f5f6782ceda7","status":"active","name":"remote attestation","description":"A security service for reporting the current software state of a remote and untrusted device.","types":["security service"],"aliases":["RA"],"contributors":[{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["extraction"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/concepts/co_a1d63df17ea6f62b18f6f5f6782ceda7"},{"public_id":"co_a522f74e263037a605d67bb78b317b68","status":"active","name":"collective remote attestation","description":"A remote attestation setting in which a set of networked devices is attested together rather than one device at a time.","types":["security protocol"],"aliases":["collective RA","collective attestation"],"contributors":[{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["extraction"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/concepts/co_a522f74e263037a605d67bb78b317b68"},{"public_id":"co_dc1b295b00dcc3b1e58f4372db8e3bbb","status":"active","name":"design space","description":"The set of design choices and alternatives for collective remote attestation protocols.","types":["conceptual space"],"aliases":[],"contributors":[{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["extraction"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/concepts/co_dc1b295b00dcc3b1e58f4372db8e3bbb"},{"public_id":"co_eb76f6ecb404ca17a681e2369595bf9b","status":"active","name":"systematic treatment","description":"A structured, principled approach to analyzing and designing collective remote attestation protocols.","types":["approach"],"aliases":[],"contributors":[{"id":1,"public_id":"12632b8b5f","public_label":"Anonymous (12632b8b5f)","roles":["extraction"],"url":"https://sah.borca.ai/u/12632b8b5f"}],"url":"https://sah.borca.ai/concepts/co_eb76f6ecb404ca17a681e2369595bf9b"}],"external_ids":{"DOI":"10.1109/ICDCS.2019.00120","ArXiv":null,"PubMed":null,"PubMedCentral":null,"MAG":2955653233,"DBLP":"conf/icdcs/NunesD0RST19","ACL":null},"open_access":{"is_open_access":false,"pdf_url":null,"landing_url":"https://sah.borca.ai/papers/160006011","source":null,"pdf_url_source":null,"license":null,"reason":"pdf_url_not_indexed"},"reference_availability":{"status":"available","references_indexed":true,"full_text_available":false,"full_text_source":null,"count_basis":"semantic_scholar_metadata","extraction_status":"not_applicable","reason":null},"source":{"provider":"episteme2","base_corpus":"semantic_scholar_dump","freshness_mode":"unknown","basis":["semantic_scholar_metadata","postgres_metadata"],"limits":["paper metadata is based on indexed upstream scholarly datasets","claims and concepts are available only for extracted papers","absence of claims or concepts means no extracted graph data is available in this response"],"status":"available","degraded":false,"degraded_reasons":[],"diagnostics":{"status":"available","degraded":false,"degraded_reasons":[],"metadata_status":"available","graph_status":"available","abstract_status":"available"},"source_flags":1},"paper_id":637409,"paper_uid":"1bfe92f3-9d6c-4cd0-b5ef-cc28732815b8","canonical_identity":{"paper_id":637409,"paper_uid":"1bfe92f3-9d6c-4cd0-b5ef-cc28732815b8","identity_status":"available","lookup_basis":"semantic_scholar_external_id","compatibility_path":"corpus_id"},"url":"https://sah.borca.ai/papers/160006011"}