PERMANENT: Publicly Verifiable Remote Attestation for Internet of Things through Blockchain

Sigurd Frej Joel Jørgensen Ankergård, Edlira Dushku, Nicola Dragoni

Research output: Chapter in Book/Report/Conference proceedingArticle in proceedingsResearchpeer-review

Abstract

Remote Attestation (RA) is a security mechanism that allows a centralized trusted entity (Verifier) to check the trustworthiness of a potentially compromised IoT device (Prover). With the tsunami of interconnected IoT devices, the advancement of swarm RA schemes that efficiently attest large IoT networks has become crucial. Recent swarm RA approaches work towards distributing the attestation verification from a centralized Verifier to many Verifiers. However, the assumption of trusted Verifiers in the swarm is not practical in large networks. In addition, the state-of-the-art RA schemes do not establish network-wide decentralized trust among the interacting devices in the swarm. This paper proposes PERMANENT, a Publicly Verifiable Remote Attestation protocol for Internet of Things through Blockchain, which stores the historical attestation results of all devices in a blockchain and allows each interacting device to obtain the attestation result. PERMANENT enables devices to make a trust decision based on the historical attestation results. This feature allows the interaction among trustworthy devices (or with a trust score over a certain threshold) without the computational overhead of attesting every participating device before each interaction. We validate PERMANENT with a proof-of-concept implementation, using Hyperledger Sawtooth as the underlying blockchain. The conducted experiments confirm the feasibility of the PERMANENT protocol.
Original languageEnglish
Title of host publicationProceedings of he 14th International Symposium on Foundations & Practice of Security
Number of pages17
PublisherSpringer
Publication statusAccepted/In press - 2022
Event14th International Symposium on Foundations & Practice of Security - Espace Hamelin, Paris, France
Duration: 7 Dec 202110 Dec 2021
https://www.fps-2021.com/

Conference

Conference14th International Symposium on Foundations & Practice of Security
LocationEspace Hamelin
Country/TerritoryFrance
CityParis
Period07/12/202110/12/2021
Internet address

Keywords

  • Remote attestation
  • Internet of Things
  • Blockchain
  • Public verifiability

Fingerprint

Dive into the research topics of 'PERMANENT: Publicly Verifiable Remote Attestation for Internet of Things through Blockchain'. Together they form a unique fingerprint.

Cite this