Semantic Remote Attestation

Overview

Remote attestation is one of the core functionalities provided by trusted computing platforms. It holds the promise of enabling a variety of novel applications. However, current techniques for remote attestation are static, inexpressive and fundamentally incompatible with today's heterogeneous distributed computing environments and commodity open systems.

Using language-based virtual machines enables the remote attestation of complex, dynamic, and high-level program properties --- in a platform-independent way. We call this semantic remote attestation. This enables a number of novel applications that distribute trust dynamically.

Want the five-minute "mad" version? Here are the slides: 1, 2 and 3. (These were presented at the "five-minute madness" session of the Socal Spring 2004 meeting)

Publications

Conferences and Workshops

New Vivek Haldar and Michael Franz; Symmetric Behavior-Based Trust: A New Paradigm for Internet Computing; New Security Paradigms Workshop, Sept 2004; - local preprint (PDF).

Vivek Haldar, Deepak Chandra, and Michael Franz; Semantic Remote attestation: A Virtual Machine Directed Approach to Trusted Computing; USENIX Virtual Machine Research and Technology Symposium, May 2004; Winner of Best Paper Award (also Technical Report No. 03-20, School of Information and Computer Science, University of California, Irvine; October 2003) - PDF - Slides of talk (PDF).

Technical Reports

Vivek Haldar and Michael Franz; Mandatory Access Control at the Object Level in the Java Virtual Machine; Technical Report No. 04-06, Department of Information and Computer Science, University of California, Irvine; April 2004 - PDF

People

more info more info more info more info