Smart City Gnosys
Smart city article details
| Title | State-Of-The-Art Software-Based Remote Attestation: Opportunities And Open Issues For Internet Of Things |
|---|---|
| ID_Doc | 52961 |
| Authors | Ankergård S.F.J.J.; Dushku E.; Dragoni N. |
| Year | 2021 |
| Published | Sensors, 21, 5 |
| DOI | http://dx.doi.org/10.3390/s21051598 |
| Abstract | The Internet of Things (IoT) ecosystem comprises billions of heterogeneous Internet-connected devices which are revolutionizing many domains, such as healthcare, transportation, smart cities, to mention only a few. Along with the unprecedented new opportunities, the IoT revolution is creating an enormous attack surface for potential sophisticated cyber attacks. In this context, Remote Attestation (RA) has gained wide interest as an important security technique to remotely detect adversarial presence and assure the legitimate state of an IoT device. While many RA approaches proposed in the literature make different assumptions regarding the architecture of IoT devices and adversary capabilities, most typical RA schemes rely on minimal Root of Trust by leveraging hardware that guarantees code and memory isolation. However, the presence of a specialized hardware is not always a realistic assumption, for instance, in the context of legacy IoT devices and resource-constrained IoT devices. In this paper, we survey and analyze existing software-based RA schemes (i.e., RA schemes not relying on specialized hardware components) through the lens of IoT. In particular, we provide a comprehensive overview of their design characteristics and security capabilities, analyzing their advantages and disadvantages. Finally, we discuss the opportunities that these RA schemes bring in attesting legacy and resource-constrained IoT devices, along with open research issues. © 2021 by the authors. Licensee MDPI, Basel, Switzerland. |
| Author Keywords | Legacy Internet of Things; Remote attestation; Software integrity verification; Software-based attestation; Timing-based attestation |
Similar Articles
| Id | Similarity | Authors | Title | Published |
|---|---|---|---|---|
47206  | 0.917 | Ferro L.; Bravi E.; Sisinni S.; Lioy A. | Safehive: Secure Attestation Framework For Embedded And Heterogeneous Iot Devices In Variable Environments | SaT-CPS 2024 - Proceedings of the 2024 ACM Workshop on Secure and Trustworthy Cyber-Physical Systems (2024) |
| 7396 | 0.914 | Moreau L.; Conchon E.; Sauveron D. | An Adaptive Simultaneous Multi-Protocol Extension Of Craft | Sensors, 23, 8 (2023) |
| 25431 | 0.876 | Bravi E.; Sisinni S.; Lioy A. | Exploiting The Dice Specification To Ensure Strong Identity And Integrity Of Iot Devices | 2023 8th International Conference on Smart and Sustainable Technologies, SpliTech 2023 (2023) |
| 44110 | 0.872 | Iqbal A.; Zia U.; Aman M.N.; Sikdar B. | Ram-Based Firmware Attestation For Iot Security: A Representation Learning Framework | IEEE Internet of Things Journal, 11, 21 (2024) |
| 47114 | 0.855 | Cao J.; Li S.; Ma R.; Han Y.; Zhang Y.; Li H. | Rpria: Reputation And Puf-Based Remote Identity Attestation Protocol For Massive Iot Devices | IEEE Internet of Things Journal, 9, 19 (2022) |
| 34727 | 0.853 | Huo D.; Wang Y.; Liu C.; Li M.; Wang Y.; Xu Z. | Lape: A Lightweight Attestation Of Program Execution Scheme For Bare-Metal Systems | Proceedings - 2020 IEEE 22nd International Conference on High Performance Computing and Communications, IEEE 18th International Conference on Smart City and IEEE 6th International Conference on Data Science and Systems, HPCC-SmartCity-DSS 2020 (2020) |
| 33773 | 0.853 | Iqbal A.; Aman M.N.; Sikdar B. | Iot Device Authentication Via Ram Trace Analysis: A Representation Learning Framework | Proceedings - IEEE Global Communications Conference, GLOBECOM (2024) |