Towards Interoperable Enclave Attestation: Learnings from Decades of Academic Work

Arto Niemi; Sampo Sovio; Jan-Erik Ekberg

doi:10.23919/FRUCT54823.2022.9770907

Proceedings of the XXth Conference of Open Innovations Association FRUCT (Apr 2022)

Towards Interoperable Enclave Attestation: Learnings from Decades of Academic Work

Arto Niemi,
Sampo Sovio,
Jan-Erik Ekberg

Affiliations

Arto Niemi: Huawei Technologies Oy, Finland
Sampo Sovio: Huawei Technologies Oy, Finland
Jan-Erik Ekberg: Huawei Technologies Oy, Fiji

DOI: https://doi.org/10.23919/FRUCT54823.2022.9770907
Journal volume & issue: Vol. 31, no. 1
pp. 189 – 200

Abstract

Read online

Secure enclave technology has during the last decade emerged as an important hardware security primitive in server computer cores, and increasingly also in chips intended for consumer devices like mobile phones and PCs. The local or remote user of the enclave will rely on attestation protocols to confirm the isolation and other security properties of the enclave. In this paper, we analyze different attestation architectures and techniques as well as ways to present attestation evidence and metrics. We find that existing industry efforts to make attestation interoperable across platforms and trust roots can benefit from the wealth of research around remote attestation that has taken place since the 1990's.

Published in Proceedings of the XXth Conference of Open Innovations Association FRUCT

ISSN: 2305-7254 (Print); 2343-0737 (Online)
Publisher: FRUCT
Country of publisher: Finland
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering: Telecommunication
Website: http://fruct.org/publication

About the journal

Abstract

Keywords