$\pi_{\mathbf{RA}}$: A $\pi\text{-calculus}$用于验证使用远程认证的协议

2023 IEEE 36th Computer Security Foundations Symposium (CSF) Pub Date : 2023-07-01 DOI:10.1109/CSF57540.2023.00019

E. Lanckriet, Matteo Busi, Dominique Devriese

{"title":"$\\pi_{\\mathbf{RA}}$: A $\\pi\\text{-calculus}$用于验证使用远程认证的协议","authors":"E. Lanckriet, Matteo Busi, Dominique Devriese","doi":"10.1109/CSF57540.2023.00019","DOIUrl":null,"url":null,"abstract":"Remote attestation (RA) is a primitive that allows the authentication of software components on untrusted systems by relying on a root of trust. Network protocols can use the primitive to establish trust in remote software components they communicate with. As such, RA can be regarded as a first-class security primitive like (a)symmetric encryption, message authentication, etc. However, current formal models of RA do not allow analysing protocols that use the primitive without tying them to specific platforms, low-level languages, memory protection models, or implementation details. In this paper, we propose and demonstrate a new model, called $\\pi_{\\mathbf{RA}}$, that supports RA at a high level of abstraction by treating it as a cryptographic primitive in a variant of the applied $\\pi- \\mathbf{calculus}$. To demonstrate the use of $\\pi_{\\mathbf{RA}}$, we use it to formalise and analyse the security of MAGE, an SGX-based framework that allows mutual attestation of multiple enclaves. The protocol is formalised in the form of a compiler that implements actor-based communication primitives in a source language $(\\pi_{\\text{Actor}})$ in terms of remote attestation primitives in $\\pi_{\\text{RA}}$. Our security analysis uncovers a caveat in the security of MAGE that was left unmentioned in the original paper.","PeriodicalId":179870,"journal":{"name":"2023 IEEE 36th Computer Security Foundations Symposium (CSF)","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2023-07-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"$\\\\pi_{\\\\mathbf{RA}}$: A $\\\\pi\\\\text{-calculus}$ for Verifying Protocols that Use Remote Attestation\",\"authors\":\"E. Lanckriet, Matteo Busi, Dominique Devriese\",\"doi\":\"10.1109/CSF57540.2023.00019\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Remote attestation (RA) is a primitive that allows the authentication of software components on untrusted systems by relying on a root of trust. Network protocols can use the primitive to establish trust in remote software components they communicate with. As such, RA can be regarded as a first-class security primitive like (a)symmetric encryption, message authentication, etc. However, current formal models of RA do not allow analysing protocols that use the primitive without tying them to specific platforms, low-level languages, memory protection models, or implementation details. In this paper, we propose and demonstrate a new model, called $\\\\pi_{\\\\mathbf{RA}}$, that supports RA at a high level of abstraction by treating it as a cryptographic primitive in a variant of the applied $\\\\pi- \\\\mathbf{calculus}$. To demonstrate the use of $\\\\pi_{\\\\mathbf{RA}}$, we use it to formalise and analyse the security of MAGE, an SGX-based framework that allows mutual attestation of multiple enclaves. The protocol is formalised in the form of a compiler that implements actor-based communication primitives in a source language $(\\\\pi_{\\\\text{Actor}})$ in terms of remote attestation primitives in $\\\\pi_{\\\\text{RA}}$. Our security analysis uncovers a caveat in the security of MAGE that was left unmentioned in the original paper.\",\"PeriodicalId\":179870,\"journal\":{\"name\":\"2023 IEEE 36th Computer Security Foundations Symposium (CSF)\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2023-07-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2023 IEEE 36th Computer Security Foundations Symposium (CSF)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/CSF57540.2023.00019\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2023 IEEE 36th Computer Security Foundations Symposium (CSF)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CSF57540.2023.00019","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

远程认证(RA)是一种原语，它允许通过依赖信任根对不受信任系统上的软件组件进行身份验证。网络协议可以使用原语在与之通信的远程软件组件中建立信任。因此，RA可以被视为一级安全原语，就像(a)对称加密、消息身份验证等一样。然而，当前的正式RA模型不允许分析使用原语的协议，而不将它们绑定到特定的平台、低级语言、内存保护模型或实现细节。在本文中，我们提出并演示了一个新的模型，称为$\pi_{\mathbf{RA}}$，它通过将其作为应用的$\pi- \mathbf{微积分}$的变体中的加密原语来支持高级抽象的RA。为了演示$\pi_{\mathbf{RA}}$的使用，我们使用它来形式化和分析MAGE的安全性，MAGE是一个基于sgx的框架，允许多个飞地的相互认证。该协议以编译器的形式形式化，该编译器在源语言$(\pi_{\text{Actor}})$中实现基于角色的通信原语，并在$\pi_{\text{RA}}$中实现远程认证原语。我们的安全性分析揭示了原始论文中未提及的MAGE安全性中的一个警告。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

$\pi_{\mathbf{RA}}$: A $\pi\text{-calculus}$ for Verifying Protocols that Use Remote Attestation

Remote attestation (RA) is a primitive that allows the authentication of software components on untrusted systems by relying on a root of trust. Network protocols can use the primitive to establish trust in remote software components they communicate with. As such, RA can be regarded as a first-class security primitive like (a)symmetric encryption, message authentication, etc. However, current formal models of RA do not allow analysing protocols that use the primitive without tying them to specific platforms, low-level languages, memory protection models, or implementation details. In this paper, we propose and demonstrate a new model, called $\pi_{\mathbf{RA}}$, that supports RA at a high level of abstraction by treating it as a cryptographic primitive in a variant of the applied $\pi- \mathbf{calculus}$. To demonstrate the use of $\pi_{\mathbf{RA}}$, we use it to formalise and analyse the security of MAGE, an SGX-based framework that allows mutual attestation of multiple enclaves. The protocol is formalised in the form of a compiler that implements actor-based communication primitives in a source language $(\pi_{\text{Actor}})$ in terms of remote attestation primitives in $\pi_{\text{RA}}$. Our security analysis uncovers a caveat in the security of MAGE that was left unmentioned in the original paper.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2023 IEEE 36th Computer Security Foundations Symposium (CSF)

自引率

0.00%

发文量

期刊最新文献

SoK: Model Inversion Attack Landscape: Taxonomy, Challenges, and Future Roadmap $\pi_{\mathbf{RA}}$: A $\pi\text{-calculus}$ for Verifying Protocols that Use Remote Attestation Keep Spending: Beyond Optimal Cyber-Security Investment A State-Separating Proof for Yao's Garbling Scheme Collusion-Deterrent Threshold Information Escrow