V. Alistarov. University of Würzburg, Bachelor Thesis, (Dezember 2020)
Zusammenfassung
With the recent spike of Internet of Things (IoT) and "smart" devices, there has also been an increase in the amount of attacks on IoT networks. Wide-reaching attacks such as the one from the Mirai botnet in 2016 show how crucial it is to know that a device can be trusted before initiating communication. Remote Attestation (RA) is a proven method for asserting that a device is in a benign state. It is a challenge-response process between two parties, where the first checks the trustworthiness of the second. However, it is characterizable with low scalability a critical issue in the IoT sector. In our work, we model a new RA protocol, called Aggregatable Remote Attestation, which would allow a device to process multiple RA challenges simultaneously. We base it on the already existing SIMPLE architecture and implement it as a Proof-of-Concept (PoC) by modifying the code of the Security MicroVisor the core component of SIMPLE. We evaluate our work in terms of security and performance and show that it greatly outperforms the underlying SIMPLE. We discuss the relevance of our design in relation to the IoT sphere and denote a small set of potential topics for future work and research.
%0 Thesis
%1 alistarov2020aggregatable
%A Alistarov, Vasil
%D 2020
%I Bachelor Thesis
%K SIMPL remote-attestation security sss-group sssgroup thesis_supervised_by_SSS_member thesis_supervised_by_sss_member
%T Aggregatable Remote Attestation for IoT
%X With the recent spike of Internet of Things (IoT) and "smart" devices, there has also been an increase in the amount of attacks on IoT networks. Wide-reaching attacks such as the one from the Mirai botnet in 2016 show how crucial it is to know that a device can be trusted before initiating communication. Remote Attestation (RA) is a proven method for asserting that a device is in a benign state. It is a challenge-response process between two parties, where the first checks the trustworthiness of the second. However, it is characterizable with low scalability a critical issue in the IoT sector. In our work, we model a new RA protocol, called Aggregatable Remote Attestation, which would allow a device to process multiple RA challenges simultaneously. We base it on the already existing SIMPLE architecture and implement it as a Proof-of-Concept (PoC) by modifying the code of the Security MicroVisor the core component of SIMPLE. We evaluate our work in terms of security and performance and show that it greatly outperforms the underlying SIMPLE. We discuss the relevance of our design in relation to the IoT sphere and denote a small set of potential topics for future work and research.
@mastersthesis{alistarov2020aggregatable,
abstract = {With the recent spike of Internet of Things (IoT) and "smart" devices, there has also been an increase in the amount of attacks on IoT networks. Wide-reaching attacks such as the one from the Mirai botnet in 2016 show how crucial it is to know that a device can be trusted before initiating communication. Remote Attestation (RA) is a proven method for asserting that a device is in a benign state. It is a challenge-response process between two parties, where the first checks the trustworthiness of the second. However, it is characterizable with low scalability a critical issue in the IoT sector. In our work, we model a new RA protocol, called Aggregatable Remote Attestation, which would allow a device to process multiple RA challenges simultaneously. We base it on the already existing SIMPLE architecture and implement it as a Proof-of-Concept (PoC) by modifying the code of the Security MicroVisor the core component of SIMPLE. We evaluate our work in terms of security and performance and show that it greatly outperforms the underlying SIMPLE. We discuss the relevance of our design in relation to the IoT sphere and denote a small set of potential topics for future work and research.},
added-at = {2021-09-28T22:06:40.000+0200},
author = {Alistarov, Vasil},
biburl = {https://www.bibsonomy.org/bibtex/29ee1a67304c35dd3396ec0cab946ce1c/sssgroup},
interhash = {967f28595f3c372f65abd809ea937aca},
intrahash = {9ee1a67304c35dd3396ec0cab946ce1c},
keywords = {SIMPL remote-attestation security sss-group sssgroup thesis_supervised_by_SSS_member thesis_supervised_by_sss_member},
month = {December},
publisher = {Bachelor Thesis},
school = {University of Würzburg},
timestamp = {2024-10-14T14:11:18.000+0200},
title = {Aggregatable Remote Attestation for IoT},
type = {Bachelor Thesis},
year = 2020
}