English

BLINDTRUST: Oblivious Remote Attestation for Secure Service Function Chains

Cryptography and Security 2021-07-13 v1

Abstract

With the rapidly evolving next-generation systems-of-systems, we face new security, resilience, and operational assurance challenges. In the face of the increasing attack landscape, it is necessary to cater to efficient mechanisms to verify software and device integrity to detect run-time modifications. Towards this direction, remote attestation is a promising defense mechanism that allows a third party, the verifier, to ensure a remote device's (the prover's) integrity. However, many of the existing families of attestation solutions have strong assumptions on the verifying entity's trustworthiness, thus not allowing for privacy preserving integrity correctness. Furthermore, they suffer from scalability and efficiency issues. This paper presents a lightweight dynamic configuration integrity verification that enables inter and intra-device attestation without disclosing any configuration information and can be applied on both resource-constrained edge devices and cloud services. Our goal is to enhance run-time software integrity and trustworthiness with a scalable solution eliminating the need for federated infrastructure trust.

Keywords

Cite

@article{arxiv.2107.05054,
  title  = {BLINDTRUST: Oblivious Remote Attestation for Secure Service Function Chains},
  author = {Heini Bergsson Debes and Thanassis Giannetsos and Ioannis Krontiris},
  journal= {arXiv preprint arXiv:2107.05054},
  year   = {2021}
}

Comments

10 pages

R2 v1 2026-06-24T04:04:51.533Z