On the root of trust identification problem

Author

Ivan De Oliveira NUNES
Xuhua DING, Singapore Management UniversityFollow
Gene TSUDIK

Publication Type

Conference Proceeding Article

Version

publishedVersion

Publication Date

5-2021

Abstract

Trusted Execution Environments (TEEs) are becoming ubiquitous and are currently used in many security applications: from personal IoT gadgets to banking and databases. Prominent examples of such architectures are Intel SGX, ARM TrustZone, and Trusted Platform Modules (TPMs). A typical TEE relies on a dynamic Root of Trust (RoT) to provide security services such as code/data confidentiality and integrity, isolated secure software execution, remote attestation, and sensor auditing. Despite their usefulness, there is currently no secure means to determine whether a given security service or task is being performed by the particular RoT within a specific physical device. We refer to this as the Root of Trust Identification (RTI) problem and discuss how it inhibits security for applications such as sensing and actuation. We formalize the RTI problem and argue that security of RTI protocols is especially challenging due to local adversaries, cuckoo adversaries, and the combination thereof. To cope with this problem we propose a simple and effective protocol based on biometrics. Unlike biometric-based user authentication, our approach is not concerned with verifying user identity, and requires neither preenrollment nor persistent storage for biometric templates. Instead, it takes advantage of the difficulty of cloning a biometric in realtime to securely identify the RoT of a given physical device, by using the biometric as a challenge. Security of the proposed protocol is analyzed in the combined Local and Cuckoo adversarial model. Also, a prototype implementation is used to demonstrate the protocol’s feasibility and practicality. We further propose a Proxy RTI protocol, wherein a previously identified RoT assists a remote verifier in identifying new RoTs.

Keywords

Embedded systems, Redundancy, Robotics, Networks, Network reliability

Discipline

Databases and Information Systems | Information Security

Research Areas

Information Systems and Management

Publication

Proceedings of the 20th ACM/IEEE on Information Processing in Sensor Networks, Nashville, USA, 2021 May 18-21

First Page

315

Last Page

327

Identifier

10.1145/3412382.3458274

Publisher

ACM

City or Country

Nashville, USA

Citation

NUNES, Ivan De Oliveira; DING, Xuhua; and TSUDIK, Gene. On the root of trust identification problem. (2021). Proceedings of the 20th ACM/IEEE on Information Processing in Sensor Networks, Nashville, USA, 2021 May 18-21. 315-327.
Available at: https://ink.library.smu.edu.sg/sis_research/6736

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-No Derivative Works 4.0 International License.