YoVDO

A Simple Protocol for Remote Attestation of System Integrity

Offered By: Linux Foundation via YouTube

Tags

Remote Attestation Courses Linux Security Courses TLS Courses Trusted Platform Module Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore a simple protocol for remote attestation of system integrity in this 29-minute Linux Foundation conference talk. Learn how to overcome the limitations of TPM key sealing with the proposed IMA Digest Lists extension, enabling the inclusion of Integrity Measurement Architecture (IMA) measurements in platform state. Discover a streamlined solution for remote attestation that eliminates the need for dedicated servers by leveraging TLS channel endpoints and the TCG's Subject Key Attestation Evidence (SKAE) X.509 extension. Delve into the feasibility issues of conventional solutions, understand the tradeoffs made, and gain insights into protecting mutable files, reducing TCB size, and implementing chained integrity verification across reboots. Examine the Infoflow LSM implementation process and explore the source code to enhance your understanding of this innovative approach to system integrity attestation.

Syllabus

Intro
Remote Attestation - Problem
Background - Explicit RA
Simple RA Protocol with Implicit RA
Mutable Files in the IMA Measurement List
Alternative Solution for Evaluation of Mutable Fles
Unknown Impact of Process Actions without MAC
Protect Mutable Files with Mandatory Access Control
Integrity Models - Biba vs Clark-Wison
PRIMA Overview and Drawbacks
Our Proposal to Simplify and Complete PRIMA
Reduce TCB size
Detect Malicious Updates of Mutable Fles
Exclude Mutable Files from Measurement
Chained Integrity Verification across Reboots
Implicit RA-Verification Options
Infollow LSM Implementation - Setup Phase
Infoflow LSM Implementation - Deployment Phase
Source Code
Conclusions


Taught by

Linux Foundation

Tags

Related Courses

Security Architecture and Engineering
Packt via Coursera
IoT Product Security
LinkedIn Learning
Windows 11 Troubleshooting: Security and Encryption
Pluralsight
Look at ME! - Intel ME Investigation
media.ccc.de via YouTube
Hacking With a TPM
media.ccc.de via YouTube