LFCS Seminar: Tuesday, 16 May - Usama Sardar Title: Comprehensive Specification and Formal Analysis of Attestation Mechanisms in Confidential Computing Abstract: Attestation is one of the most critical mechanisms in confidential computing (CC). This talk presents a novel approach based on the combination of Trusted Execution Environment (TEE)-agnostic attestation architecture and formal analysis enabling comprehensive and rigorous security analysis of attestation mechanisms in CC. We demonstrate the application of our approach for three prominent industrial representatives, namely Arm Confidential Compute Architecture (CCA) in architecture lead solutions, Intel Trust Domain Extensions (TDX) in vendor solutions, and Secure CONtainer Environment (SCONE) in frameworks. For each of these solutions, we provide a comprehensive specification of all phases of the attestation mechanism in confidential computing, namely provisioning, initialization, and attestation protocol. Our approach reveals design and security issues in Intel TDX and SCONE attestation. The talk is based on joint work [1] with Thomas Fossati and Simon Frost from Arm. [1] https://www.researchgate.net/publication/367284929_SoK_Attestation_in_Confidential_Computing May 16 2023 16.00 - 17.00 LFCS Seminar: Tuesday, 16 May - Usama Sardar Usama Sardar, Technische Universität Dresden https://tu-dresden.de/ing/informatik/sya/se/die-professur/beschaeftigte/muhammad-usama-sardar Venue: IF G.03 Remote participation: URL: https://ed-ac-uk.zoom.us/j/82080837240 Password: RqX0RkMN
LFCS Seminar: Tuesday, 16 May - Usama Sardar Title: Comprehensive Specification and Formal Analysis of Attestation Mechanisms in Confidential Computing Abstract: Attestation is one of the most critical mechanisms in confidential computing (CC). This talk presents a novel approach based on the combination of Trusted Execution Environment (TEE)-agnostic attestation architecture and formal analysis enabling comprehensive and rigorous security analysis of attestation mechanisms in CC. We demonstrate the application of our approach for three prominent industrial representatives, namely Arm Confidential Compute Architecture (CCA) in architecture lead solutions, Intel Trust Domain Extensions (TDX) in vendor solutions, and Secure CONtainer Environment (SCONE) in frameworks. For each of these solutions, we provide a comprehensive specification of all phases of the attestation mechanism in confidential computing, namely provisioning, initialization, and attestation protocol. Our approach reveals design and security issues in Intel TDX and SCONE attestation. The talk is based on joint work [1] with Thomas Fossati and Simon Frost from Arm. [1] https://www.researchgate.net/publication/367284929_SoK_Attestation_in_Confidential_Computing May 16 2023 16.00 - 17.00 LFCS Seminar: Tuesday, 16 May - Usama Sardar Usama Sardar, Technische Universität Dresden https://tu-dresden.de/ing/informatik/sya/se/die-professur/beschaeftigte/muhammad-usama-sardar Venue: IF G.03 Remote participation: URL: https://ed-ac-uk.zoom.us/j/82080837240 Password: RqX0RkMN
May 16 2023 16.00 - 17.00 LFCS Seminar: Tuesday, 16 May - Usama Sardar Usama Sardar, Technische Universität Dresden https://tu-dresden.de/ing/informatik/sya/se/die-professur/beschaeftigte/muhammad-usama-sardar
