Survey of Integrity Verification Solutions, Local and Remote Attestation

  • Friday, 09 Mar 2018 3:30PM EST (09 Mar 2018 20:30 UTC)
  • Speakers: Ben Gardiner, Colin DeWinter

In connected mobility systems, the need for attestation as a security control against tampering arises for various reasons. To detect code modification, to detect the modification of immutable data (such as Root CAs), to assert whether clients are worthy of trust, etc. In our capacity as experts on the subject of local attestation, we would like to share a review of the public research on the remote and local attestation solutions available both freely and commercially. We will not be disclosing any original research; rather, a'literature review' of details known about some select attestation systems will be presented. e.g. Windows, OSX, iOS, Android, Linux -- both local (where applicable) and remote. Attendees should leave with a better understanding of * what are the criteria one should use to evaluate remote attestation technologies? local attestation as well? * in what cases is remote attestation not possible? * what is required to deploy robust local attestation technologies?

Join SANS for the 2nd Annual Automotive Cybersecurity Summit & Training, May 1-8, 2018, in Chicago. Security professionals representing the automotive industry's technology providers, policy-makers, and others within the vehicle supply chain will discuss security risks, methods to safeguard systems, and how to protect customers from an ever-evolving threat landscape. 'Join us to further develop your skills, perspective, and how to form actionable plans that address the increasingly complex world of Smart Vehicles and Smart Infrastructures.