Conference
Towards a Privacy-preserving Attestation for Virtualized Networks
| العنوان: | Towards a Privacy-preserving Attestation for Virtualized Networks |
|---|---|
| المؤلفون: | Arfaoui, Ghada, Jacques, Thibaut, Lacoste, Marc, Antoine, Onete, Cristina, Robert, Léo |
| المساهمون: | Orange Labs., Lannion, France, Mathématiques & Sécurité de l'information (XLIM-MATHIS), XLIM (XLIM), Université de Limoges (UNILIM)-Centre National de la Recherche Scientifique (CNRS)-Université de Limoges (UNILIM)-Centre National de la Recherche Scientifique (CNRS), Orange Labs Lannion, France Télécom, Université de Limoges (UNILIM)-Centre National de la Recherche Scientifique (CNRS), Modélisation, Information et Systèmes - UR UPJV 4290 (MIS), Université de Picardie Jules Verne (UPJV), ANR-18-CE39-0019,MobiS5,La sécurité et la privacy dans les réseaux 5G(2018) |
| المصدر: | 28th European Symposium on Research in Computer Security https://u-picardie.hal.science/hal-04243661 28th European Symposium on Research in Computer Security, Sep 2023, La Haye, Netherlands |
| بيانات النشر: | HAL CCSD |
| سنة النشر: | 2023 |
| مصطلحات موضوعية: | Deep Attestation, Multi-tenant, 5G, Privacy, [INFO.INFO-CR]Computer Science [cs]/Cryptography and Security [cs.CR] |
| جغرافية الموضوع: | La Haye, Netherlands |
| الوصف: | International audience ; TPM remote attestation allows to verify the integrity of the boot sequence of a remote device. Deep Attestation extends that concept to virtualized platforms by allowing to attest virtual components, the hypervisor, and the link between them. In multi-tenant environments, deep attestation solution offer security and/or efficiency, but no privacy. In this paper, we propose a privacy preserving TPM-based deep attestation solution in multi-tenant environments, which provably guarantees: (i) Inter-tenant privacy: a tenant is cannot know whether other VMs outside its own are hosted on the same machine; (ii) Configuration hiding: the hypervisor's configuration, used during attestation, remains hidden from the tenants; and (iii) Layer linking: tenants can link hypervisors with the VMs, thus obtaining a guarantee that the VMs are running on specific hardware. We also implement our scheme and show that it is efficient despite the use of complex cryptographic tools. |
| نوع الوثيقة: | conference object |
| اللغة: | English |
| Relation: | hal-04243661; https://u-picardie.hal.science/hal-04243661; https://u-picardie.hal.science/hal-04243661/document; https://u-picardie.hal.science/hal-04243661/file/long_esorics.pdf |
| الاتاحة: | https://u-picardie.hal.science/hal-04243661 https://u-picardie.hal.science/hal-04243661/document https://u-picardie.hal.science/hal-04243661/file/long_esorics.pdf |
| Rights: | info:eu-repo/semantics/OpenAccess |
| رقم الانضمام: | edsbas.32A27E24 |
| قاعدة البيانات: | BASE |
| الوصف غير متاح. |