Triad: Trusted Timestamps in Untrusted Environments
Publikation: Beitrag zu Konferenzen › Paper › Beigetragen › Begutachtung
Beitragende
Abstract
We aim to provide trusted time measurement mechanisms to applications and cloud infrastructure deployed in environments that could harbor potential adversaries, including the hardware infrastructure provider. Despite Trusted Execution Environments (TEEs) providing multiple security functionalities, timestamps from the Operating System are not covered. Nevertheless, some services require time for validating permissions or ordering events. To address that need, we introduce Triad, a trusted timestamp dispatcher of time readings. The solution provides trusted timestamps enforced by mutually supportive enclave-based clock servers that create a continuous trusted timeline. We leverage enclave properties such as forced exits and CPU-based counters to mitigate attacks on the server's timestamp counters. Triad produces trusted, confidential, monotonically-increasing timestamps with bounded error and desirable, non-trivial properties. Our implementation relies on Intel SGX and SCONE, allowing transparent usage. We evaluate Triad's error and behavior in multiple dimensions.
Details
Originalsprache | Englisch |
---|---|
Seitenumfang | 8 |
Publikationsstatus | Veröffentlicht - 2023 |
Peer-Review-Status | Ja |
Konferenz
Titel | 14th IEEE International Conference on Cloud Computing Technology and Science |
---|---|
Kurztitel | CloudCom 2023 |
Veranstaltungsnummer | 14 |
Dauer | 4 - 6 Dezember 2023 |
Webseite | |
Bekanntheitsgrad | Internationale Veranstaltung |
Ort | Royal Hotel & online |
Stadt | Napoli |
Land | Italien |
Schlagworte
Forschungsprofillinien der TU Dresden
DFG-Fachsystematik nach Fachkollegium
Schlagwörter
- Trusted Computing, istributed Systems, TEE, Trusted Clocks