Presentation is loading. Please wait.

Presentation is loading. Please wait.

Formal Analysis and Applications of Direct Anonymous Attestation

Published byBerthold Holst Modified over 5 years ago

Similar presentations

Presentation on theme: "Formal Analysis and Applications of Direct Anonymous Attestation"— Presentation transcript:

1 Formal Analysis and Applications of Direct Anonymous Attestation
14th November 2018 RISE  Annual Conference Jorden Whitefield sudo_jorden

2 Intelligent Transportation Systems: Security & Privacy Challenges
Protect the users from the System (i.e., privacy) Anonymity (conditional) Pseudonymity Unlinkability Unobservability Protect System from the Users Authentication & Authorisation Accountability Data Trustworthiness Contradictory position between users and infrastructure Image source: “Trustworthy People-Centric Sensing: Privacy, Security and User Incentives Road-Map” #universityofsurrey

3 Direct Anonymous Attestation
Anonymous Digital Signature scheme Strong but privacy-preserving authentication Hardware-backed attestation using Trusted Platform Modules (TPM) Properties of DAA: Correctness Valid signatures only producible by honest platforms, and are verifiable and linkable where specified. User-controlled Anonymity Identity of a user cannot be revealed from signature. User-controlled Traceability Host controls whether signatures can be linked. Standardised in ISO/IEC #uniofsurrey

4 Vehicular Pseudonym System - VPKI
#universityofsurrey

5 Vehicular DAA Pseudonym System
“Privacy-Enhanced Capabilities for VANETS Using Direct Anonymous Attestation.” In 2017 IEEE Vehicular Networking Conference, VNC 2017 #universityofsurrey

6 EPSRC UK Funded Project
Demonstrate the applicability of our DAA V2X architecture Project in collaboration with Thales UK Thales eSecurity Pervasive Intelligence Nexcom VTC 6200 Intel Atom D510 Dual Core 1.6GHz 2GB RAM #universityofsurrey

7 ETSI Standards 100 to 150 message per second
Preliminary Results CREATE: 10 ms  SIGN: 84 ms  VERIFY: 510 ms Implementation details HOST: Java TPM: Raspberry Pi Model B Infineon development TPM C with IBM TSS ISSUER: Java Spring ETSI Standards 100 to 150 message per second  #universityofsurrey

8 Formal Analysis Summary
Proofs and Disproofs obtained using the Tamarin Prover Found an attack when the integrity of one TPM is compromised, the security of all TPMs cannot be guaranteed. #universityofsurrey

9 @sudo_jorden jwhitefield.co.uk

Download ppt "Formal Analysis and Applications of Direct Anonymous Attestation"

Similar presentations

ACHIEVING NETWORK LEVEL PRIVACY IN WIRELESS SENSOR NETWORKS.

ACHIEVING NETWORK LEVEL PRIVACY IN WIRELESS SENSOR NETWORKS.
Wenmao Liu Harbin Institute of Technology China. Outline ITS & VANETs Security Issues and Solutions An autonomous architecture Conclusion.

Wenmao Liu Harbin Institute of Technology China. Outline ITS & VANETs Security Issues and Solutions An autonomous architecture Conclusion.
Potential Smart Grid standardisation work in ETSI Security and privacy aspects Carmine Rizzo on behalf of Scott CADZOW, C3L © ETSI 2010. All rights reserved.

Potential Smart Grid standardisation work in ETSI Security and privacy aspects Carmine Rizzo on behalf of Scott CADZOW, C3L © ETSI All rights reserved.
Vpn-info.com.

Vpn-info.com.
Trusted Ring: A Security Enhancing Software Architecture Michael DiRossi, Inventor The Johns Hopkins University Applied Physics Laboratory.

Trusted Ring: A Security Enhancing Software Architecture Michael DiRossi, Inventor The Johns Hopkins University Applied Physics Laboratory.
Claudia Diaz, Hannelore Dekeyser, Markulf Kohlweiss, Girma Nigusse K.U.Leuven IDIS Workshop 29/05/2008 [Work done in the context of the ADAPID project]

Claudia Diaz, Hannelore Dekeyser, Markulf Kohlweiss, Girma Nigusse K.U.Leuven IDIS Workshop 29/05/2008 [Work done in the context of the ADAPID project]
Analysis of Direct Anonymous Attestation (DAA) Sudip Regmi Ilya Pirkin.

Analysis of Direct Anonymous Attestation (DAA) Sudip Regmi Ilya Pirkin.
The Attestation Mechanism in Trusted Computing. A Simple Remote Attestation Protocol Platform TPM Verifier Application A generates PK A & SK A 2) computes.

The Attestation Mechanism in Trusted Computing. A Simple Remote Attestation Protocol Platform TPM Verifier Application A generates PK A & SK A 2) computes.
Lect. 18: Cryptographic Protocols. 2 1.Cryptographic Protocols 2.Special Signatures 3.Secret Sharing and Threshold Cryptography 4.Zero-knowledge Proofs.

Lect. 18: Cryptographic Protocols. 2 1.Cryptographic Protocols 2.Special Signatures 3.Secret Sharing and Threshold Cryptography 4.Zero-knowledge Proofs.
1 Minimal TCB Code Execution Jonathan McCune, Bryan Parno, Adrian Perrig, Michael Reiter, and Arvind Seshadri Carnegie Mellon University May 22, 2007.

1 Minimal TCB Code Execution Jonathan McCune, Bryan Parno, Adrian Perrig, Michael Reiter, and Arvind Seshadri Carnegie Mellon University May 22, 2007.
16.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.

16.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.
Ragib Hasan Johns Hopkins University en.600.412 Spring 2010 Lecture 5 03/08/2010 Security and Privacy in Cloud Computing.

Ragib Hasan Johns Hopkins University en Spring 2010 Lecture 5 03/08/2010 Security and Privacy in Cloud Computing.
Trusted Computing Initiative Beyond trustworthy. Trusted Computing  Five Key Concepts >Endorsement Key >Secure Input and Output >Memory Curtain / Protected.

Trusted Computing Initiative Beyond trustworthy. Trusted Computing  Five Key Concepts >Endorsement Key >Secure Input and Output >Memory Curtain / Protected.
Trusted Computing Platform Alliance – Introduction and Technical Overview – Joe Pato HP Labs MIT 6.805/6.857 17 October 2002.

Trusted Computing Platform Alliance – Introduction and Technical Overview – Joe Pato HP Labs MIT 6.805/ October 2002.
outline Purpose Design Implementation Market Conclusion presentation Outline.

outline Purpose Design Implementation Market Conclusion presentation Outline.
Applied Cryptography for Network Security

Applied Cryptography for Network Security
APPLAUS: A Privacy-Preserving Location Proof Updating System for Location-based Services Zhichao Zhu and Guohong Cao Department of Computer Science and.

APPLAUS: A Privacy-Preserving Location Proof Updating System for Location-based Services Zhichao Zhu and Guohong Cao Department of Computer Science and.
Cloud Usability Framework

Cloud Usability Framework
Chapter 10: Authentication Guide to Computer Network Security.

Chapter 10: Authentication Guide to Computer Network Security.
Chapter 20 20-1 © 2012 Pearson Education, Inc. Publishing as Prentice Hall.

Chapter © 2012 Pearson Education, Inc. Publishing as Prentice Hall.

Similar presentations

Ads by Google