An Efficient Direct Anonymous Attestation Scheme with Forward Security
نویسندگان
چکیده
Direct Anonymous Attestation (DAA) is a cryptographic mechanism adopted by the Trusted Computing Group in its specifications for trusted computing platforms (TCP). In this paper, we propose a new DAA scheme and prove it is secure under the strong RSA assumption and the decisional Diffie-Hellman assumption. While satisfying all the security properties proposed in previous DAA schemes, our scheme provides a new desired security property, forward security: compromise of the current private key of TPM does not enable an adversary to forge signatures pertaining to the past. Such forward security is important to mitigate the damage caused by private key exposure. Key-Words: Trusted computing platform, Direct anonymous attestation, Forward security, Trusted platform module
منابع مشابه
A Forward Secure Direct Anonymous Attestation Scheme
Direct Anonymous Attestation (DAA) is a cryptographic mechanism that enables remote authentication of a Trusted Platform Module (TPM) while preserving its privacy. In this paper, we propose a new DAA scheme based on the strong RSA assumption and the decisional Diffie-Hellman assumption. While satisfying all the security properties proposed in previous DAA schemes, our scheme provides a new desi...
متن کاملDirect Anonymous Attestation for Next Generation TPM
Trusted computing platforms have been proposed as a promising approach to enhance the security of general-purpose computing systems. Direct Anonymous Attestation(DAA) is a scheme that allows a Trusted Platform Module (TPM) which is the core component of the trusted computing platform to remotely convince a communication partner that it is indeed a Trusted Platform Module while preserving the us...
متن کاملA Pairing-Based DAA Scheme Further Reducing TPM Resources
Direct Anonymous Attestation (DAA) is an anonymous signature scheme designed for anonymous attestation of a Trusted Platform Module (TPM) while preserving the privacy of the device owner. Since TPM has limited bandwidth and computational capability, one interesting feature of DAA is to split the signer role between two entities: a TPM and a host platform where the TPM is attached. Recently, Che...
متن کاملDirect Anonymous Attestation: Enhancing Cloud Service User Privacy
We introduce a privacy enhancing cloud service architecture based on the Direct Anonymous Attestation (DAA) scheme. In order to protect user data, the architecture provides cloud users with the abilities of controlling the extent of data sharing among their service accounts. A user is then enabled to link Cloud Service applications in such a way, that his/her personal data are shared only among...
متن کاملAnonymous Attestation Using the Strong Diffie Hellman Assumption Revisited
Direct Anonymous Attestation (DAA) is a cryptographic protocol for privacy-protecting authentication. It is standardized in the TPM standard and implemented in millions of chips. A variant of DAA is also used in Intel’s SGX. Recently, Camenisch et al. (PKC 2016) demonstrated that existing security models for DAA do not correctly capture all security requirements, and showed a number of flaws in...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2009