上海品茶

三个皮匠报告
上海品茶
最新
合集
英文
会议
图表
入驻
付费
new
报告
报告 合集 图表

Attested TLS and formalization.pdf

编号:161385 PDF 15页 637.83KB 下载积分:VIP专享
下载报告请您先登录!

Attested TLS and formalization.pdf

1、Enhanced Security in Transport Layer using Remote Attestation Attested TLS and FormalizationYogesh Deshpande Principal Engineer,ArmMuhammad Usama Sardar Research Associate,TU DresdenAttested TLS and FormalizationSecurity and Data ProtectionThe Transport Layer Security(TLS)handshake protocol allows a

2、uthentication of one or both peers using static,long-term credentialsIn some cases,it is also required to ensure that the peer runtime environment is in secure stateAttested TLS introduces a series of protocol extensions to the TLS 1.3 Handshake that enables binding of TLS authentication key to a re

3、mote attestation sessionWhat is Attested TLS?Need for Attested TLS?PKI Certificates used in TLS handshake are good at conveying a(network)identity of a serviceRemote Attestation is good at conveying the security state of a service,i.e.whether the execution environment is trustworthy?We can combine t

4、hem efficiently to get the security benefits of bothProposed Design uses Remote Attestation information as a first-class credentialsin a TLS HandshakeAttestation information(Evidence or Results),from any scheme,carried as extensions alongside X.509 certificate or using a new certificate typeThis app

5、roach has following benefitsBetter security Smaller attack surfaceBetter performance No need to run channel establishment and remote attestation sequentiallyProposed DesignAugmented TLS v1.3 HandshakeClientServerClient Hello(supported cipher suites,aTLS extension(s),Key ShareServer Hello(chosen ciph

6、er suite,aTLS extension(s),Key share,Certificate,Certificate Verify,FinishedCertificate(Optional),Certificate Verify(Optional),FinishedSecure data channelCERTIFICATEPRIVATE IDENTITY KEYATTESTATIONCREDENTIALEDGE DEVICESERVICEIoT/Edge Device OnboardingPRIVATE IDENTITY KEYCERTIFICATELOCAL DEVICECLOUD W

7、ORKLOAD ATTESTATIONCREDENTIALConfidential ComputingUse CasesOpen-source End to End System Prototype operated under CCC Attestation SIGConsists of Interconnected Docker Containers to simulate entire SystemAttester is TPM 2.0Fully symmetrical(both Client AND/OR Server can be the Attester)https:/ stand

8、ards and Open-Source LinksDescriptionLinkIETF TLS Extension drafthttps:/datatracker.ietf.org/doc/draft-fossati-tls-attestation/IETF EAT based Key Attestation Tokenhttps:/datatracker.ietf.org/doc/draft-bft-rats-kat/Conceptual Message Wrapper(CMW)drafthttps:/datatracker.ietf.org/doc/draft-ftbs-rats-ms

9、g-wrap/CCC Project Repositoryhttps:/ https:/munity/Project Veraisonhttps:/ least 15 different attacks on TLS protocolExplicit requirement for IETF TLS WG Non-trivial extension of TLSHigh-assurance applicationsNeed for Formal VerificationApproach for Formal VerificationOutdated verification artifacts

10、 Very few commentsMissing validation Usability/Debugging informationChallenges in Formal VerificationCurrent Community ContributorsArmTU Dresden LinaroSiemensIntuitBarkhausen InstituteHuaweiJoin us via:Via Slack #attested-tls Participate via Weekly Community meeting 10AM CET every MondayZoom Meeting Details:Meeting linkMeeting ID:953 6922 6563Passcode:040439Secure channel via attested TLS Veraison as attestation verifierPARSEC for abstraction of various RoTsNext F2F hackathon events:Linaro Connect IETF 120 HackathonCall to ActionThank you!

友情提示

1、下载报告失败解决办法
2、PDF文件下载后,可能会被浏览器默认打开,此种情况可以点击浏览器菜单,保存网页到桌面,就可以正常下载了。
3、本站不支持迅雷下载,请使用电脑自带的IE浏览器,或者360浏览器、谷歌浏览器下载即可。
4、本站报告下载后的文档和图纸-无水印,预览文档经过压缩,下载后原文更清晰。

本文(Attested TLS and formalization.pdf)为本站 (张5G) 主动上传,三个皮匠报告文库仅提供信息存储空间,仅对用户上传内容的表现方式做保护处理,对上载内容本身不做任何修改或编辑。 若此文所含内容侵犯了您的版权或隐私,请立即通知三个皮匠报告文库(点击联系客服),我们立即给予删除!

温馨提示:如果因为网速或其他原因下载失败请重新下载,重复下载不扣分。
客服
商务合作
小程序
服务号
会员动态
会员动态 会员动态:

 177**81... 升级为标准VIP   185**22... 升级为标准VIP

138**26...  升级为至尊VIP  军歌  升级为至尊VIP

159**75... 升级为至尊VIP  wei**n_... 升级为标准VIP 

wei**n_... 升级为至尊VIP   wei**n_...  升级为高级VIP

 su2**62...  升级为至尊VIP  wei**n_... 升级为至尊VIP

 wei**n_... 升级为至尊VIP  186**35... 升级为高级VIP

186**21... 升级为标准VIP   wei**n_... 升级为标准VIP 

wei**n_... 升级为标准VIP   wei**n_...  升级为标准VIP

 137**40... 升级为至尊VIP wei**n_...   升级为至尊VIP

186**37...  升级为至尊VIP 177**05...  升级为至尊VIP

wei**n_... 升级为高级VIP  wei**n_... 升级为至尊VIP

wei**n_... 升级为至尊VIP  wei**n_... 升级为标准VIP

wei**n_... 升级为高级VIP  155**91... 升级为至尊VIP 

155**91... 升级为标准VIP  177**25... 升级为至尊VIP 

 139**88...  升级为至尊VIP wei**n_...  升级为至尊VIP

wei**n_... 升级为高级VIP  wei**n_...  升级为标准VIP

135**30...  升级为标准VIP  wei**n_... 升级为高级VIP

 138**62... 升级为标准VIP  洛宾 升级为高级VIP

 wei**n_...  升级为标准VIP wei**n_...  升级为高级VIP

wei**n_... 升级为标准VIP  180**13... 升级为高级VIP 

wei**n_... 升级为至尊VIP 152**69...  升级为标准VIP

152**69... 升级为标准VIP  小**... 升级为标准VIP

 wei**n_... 升级为标准VIP 138**09... 升级为标准VIP 

wei**n_... 升级为至尊VIP  邓**  升级为标准VIP 

 wei**n_...  升级为标准VIP wei**n_... 升级为至尊VIP 

 186**22... 升级为标准VIP 微**...  升级为至尊VIP

wei**n_... 升级为至尊VIP  zhh**_s... 升级为标准VIP 

 wei**n_... 升级为至尊VIP   wei**n_...  升级为至尊VIP

wei**n_...  升级为高级VIP  wei**n_... 升级为至尊VIP 

131**00... 升级为高级VIP wei**n_...   升级为高级VIP

  188**05... 升级为至尊VIP  139**80... 升级为至尊VIP

wei**n_... 升级为高级VIP  173**11...  升级为至尊VIP 

152**71...   升级为高级VIP 137**24...   升级为至尊VIP

 wei**n_... 升级为高级VIP  185**31... 升级为至尊VIP

186**76... 升级为至尊VIP   wei**n_...  升级为标准VIP

wei**n_...   升级为标准VIP  138**50... 升级为标准VIP

 wei**n_... 升级为高级VIP wei**n_...  升级为高级VIP 

wei**n_...  升级为标准VIP  wei**n_... 升级为至尊VIP

Bry**-C...  升级为至尊VIP  151**85... 升级为至尊VIP

136**28... 升级为至尊VIP  166**35...  升级为至尊VIP

狗**... 升级为至尊VIP  般若 升级为标准VIP 

 wei**n_...  升级为标准VIP 185**87...  升级为至尊VIP

 131**96... 升级为至尊VIP 琪** 升级为标准VIP 

  wei**n_... 升级为高级VIP wei**n_...  升级为标准VIP 

 186**76... 升级为标准VIP   微**...  升级为高级VIP

186**38... 升级为标准VIP wei**n_...  升级为至尊VIP

Dav**ch... 升级为高级VIP   wei**n_...  升级为标准VIP

 wei**n_... 升级为标准VIP 189**34... 升级为标准VIP 

 135**95...  升级为至尊VIP wei**n_... 升级为标准VIP 

 wei**n_... 升级为标准VIP  137**73...  升级为标准VIP