ZEKRA: Zero-Knowledge Control-Flow Attestation

Heini Bergsson Debes, Edlira Dushku, Thanassis Giannetsos, Ali Marandi

Research output: Chapter in Book/Report/Conference proceedingArticle in proceedingsResearchpeer-review


To detect runtime attacks against programs running on a remote computing platform, Control-Flow Attestation (CFA) lets a (trusted) verifier determine the legality of the program’s execution path, as recorded and reported by the remote platform (prover). However, besides complicating scalability due to verifier complexity, this assumption regarding the verifier’s trustworthiness renders existing CFA schemes prone to privacy breaches and implementation disclosure attacks under “honest-but-curious” adversaries. Thus, to suppress sensitive details from the verifier, we propose to have the prover outsource the verification of the attested execution path to an intermediate worker of which the verifier only learns the result. However, since a worker might be dishonest about the outcome of the verification, we propose a purely cryptographical solution of transforming the verification of the attested execution path into a verifiable computational task that can be reliably outsourced to a worker without relying on any trusted execution environment. Specifically, we propose to express a program-agnostic execution path verification task inside an arithmetic circuit whose correct execution can be verified by untrusted verifiers in zero knowledge.
Original languageEnglish
Title of host publicationProceedings of the 2023 ACM Asia Conference on Computer and Communications Security
Publication date2023
ISBN (Electronic)979-8-4007-0098-9
Publication statusPublished - 2023
Event2023 ACM ASIA Conference on Computer and Communications Security - Melbourne, Australia
Duration: 10 Jul 202314 Jul 2023


Conference2023 ACM ASIA Conference on Computer and Communications Security


  • Control-Flow Attestation
  • Verifiable Computation
  • zkSNARK


Dive into the research topics of 'ZEKRA: Zero-Knowledge Control-Flow Attestation'. Together they form a unique fingerprint.

Cite this