University of Surrey

Test tubes in the lab Research in the ATI Dance Research

Secure Edge Computing with Lightweight Control-Flow Property-based Attestation

Koutroumpouchos, Nikos, Ntantogian, Christoforos, Menesidou, Sofia-Anna, Liang, Kaitai, Gouvas, Panagiotis, Xenakis, Christos and Giannetsos, Thanassis (2019) Secure Edge Computing with Lightweight Control-Flow Property-based Attestation In: 2019 IEEE Conference on Network Softwarization (NetSoft 2019), 24-28 Jun 2019, Paris, France.

Full text not available from this repository.

Abstract

The Internet of Things (IoT) is rapidly evolving, while introducing several new challenges regarding security, resilience and operational assurance. In the face of an increasing attack landscape, it is necessary to cater for the provision of efficient mechanisms to collectively verify software- and device-integrity in order to detect run-time modifications. Towards this direction, remote attestation has been proposed as a promising defense mechanism. It allows a third party, the verifier, to ensure the integrity of a remote device, the prover. However, this family of solutions do not capture the real-time requirements of industrial IoT applications and suffer from scalability and efficiency issues. In this paper, we present a lightweight dynamic control-flow property-based attestation architecture (CFPA) that can be applied on both resource-constrained edge and cloud devices and services. It is a first step towards a new line of security mechanisms that enables the provision of control-flow attestation of only those specific, critical software components that are comparatively small, simple and limited in function, thus, allowing for a much more efficient verification. Our goal is to enhance run-time software integrity and trustworthiness with a scalable and decentralized solution eliminating the need for federated infrastructure trust. Based on our findings, we posit open issues and challenges, and discuss possible ways to address them, so that security do not hinder the deployment of intelligent edge computing systems.

Item Type: Conference or Workshop Item (Conference Paper)
Divisions : Faculty of Engineering and Physical Sciences > Computer Science
Authors :
NameEmailORCID
Koutroumpouchos, Nikos
Ntantogian, Christoforos
Menesidou, Sofia-Anna
Liang, Kaitaik.liang@surrey.ac.uk
Gouvas, Panagiotis
Xenakis, Christos
Giannetsos, Thanassis
Date : 2019
Funders : European Commission
DOI : 10.1109/NETSOFT.2019.8806658
Grant Title : ASTRID
Copyright Disclaimer : © 2019 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.
Uncontrolled Keywords : Control-Flow Property-based Attestation; Software-based Attacks; Trusted Component; Security; Software; Internet of Things; Scalability; Hardware; Cloud computing; Protocols
Depositing User : Clive Harris
Date Deposited : 23 Sep 2019 12:27
Last Modified : 23 Sep 2019 12:27
URI: http://epubs.surrey.ac.uk/id/eprint/852686

Actions (login required)

View Item View Item

Downloads

Downloads per month over past year


Information about this web site

© The University of Surrey, Guildford, Surrey, GU2 7XH, United Kingdom.
+44 (0)1483 300800