PERMANENT: Publicly Verifiable Remote Attestation for Internet of Things through Blockchain

Sigurd Frej Joel Jørgensen Ankergård, Edlira Dushku, Nicola Dragoni

Research output: Chapter in Book/Report/Conference proceedingArticle in proceedingsResearchpeer-review

183 Downloads (Pure)


Remote Attestation (RA) is a security mechanism that allows a centralized trusted entity (Verifier) to check the trustworthiness of a potentially compromised IoT device (Prover). With the tsunami of interconnected IoT devices, the advancement of swarm RA schemes that efficiently attest large IoT networks has become crucial. Recent swarm RA approaches work towards distributing the attestation verification from a centralized Verifier to many Verifiers. However, the assumption of trusted Verifiers in the swarm is not practical in large networks. In addition, the state-of-the-art RA schemes do not establish network-wide decentralized trust among the interacting devices in the swarm. This paper proposes PERMANENT, a Publicly Verifiable Remote Attestation protocol for Internet of Things through Blockchain, which stores the historical attestation results of all devices in a blockchain and allows each interacting device to obtain the attestation result. PERMANENT enables devices to make a trust decision based on the historical attestation results. This feature allows the interaction among trustworthy devices (or with a trust score over a certain threshold) without the computational overhead of attesting every participating device before each interaction. We validate PERMANENT with a proof-of-concept implementation, using Hyperledger Sawtooth as the underlying blockchain. The conducted experiments confirm the feasibility of the PERMANENT protocol.
Original languageEnglish
Title of host publicationProceedings of 14th International Symposium on Foundations & Practice of Security
Publication date2022
ISBN (Print)978-3-031-08146-0
Publication statusPublished - 2022
Event14th International Symposium on Foundations & Practice of Security - Espace Hamelin, Paris, France
Duration: 7 Dec 202110 Dec 2021
Conference number: 14


Conference14th International Symposium on Foundations & Practice of Security
LocationEspace Hamelin
Internet address
SeriesLecture Notes in Computer Science


  • Remote attestation
  • Internet of Things
  • Blockchain
  • Public verifiability


Dive into the research topics of 'PERMANENT: Publicly Verifiable Remote Attestation for Internet of Things through Blockchain'. Together they form a unique fingerprint.

Cite this