On the Feasibility of Remote Attestation for Web Services

	This Article
	Subscribers, please Login Purchase article: $19 PDF RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by John Lyle Articles by Andrew Martin

2009 International Conference on Computational Science and Engineering

Vancouver, Canada

August 29-August 31

ISBN: 978-0-7695-3823-5

	ASCII Text	x
	John Lyle, Andrew Martin, "On the Feasibility of Remote Attestation for Web Services," Computational Science and Engineering, IEEE International Conference on, vol. 3, pp. 283-288, 2009 International Conference on Computational Science and Engineering, 2009.

	BibTex	x
	@article{ 10.1109/CSE.2009.213, author = {John Lyle and Andrew Martin}, title = {On the Feasibility of Remote Attestation for Web Services}, journal ={Computational Science and Engineering, IEEE International Conference on}, volume = {3}, year = {2009}, isbn = {978-0-7695-3823-5}, pages = {283-288}, doi = {http://doi.ieeecomputersociety.org/10.1109/CSE.2009.213}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computational Science and Engineering, IEEE International Conference on TI - On the Feasibility of Remote Attestation for Web Services SN - 978-0-7695-3823-5 SP283 EP288 A1 - John Lyle, A1 - Andrew Martin, PY - 2009 KW - trusted computing KW - integrity reporting KW - attestation KW - web services KW - software update VL - 3 JA - Computational Science and Engineering, IEEE International Conference on ER -

John Lyle

Andrew Martin

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/CSE.2009.213

Remote attestation is a significant part of the functionality offered by trusted computing, allowing a platform to demonstrate that it is running trustworthy software. However, this technique has been criticised as impractical, citing the management overhead of maintaining lists of acceptable software configurations. In this paper we put numbers to this problem, and argue that remote attestation may not be too fragile a technology to be used for web services.

Index Terms:

trusted computing, integrity reporting, attestation, web services, software update

Citation:

John Lyle, Andrew Martin, "On the Feasibility of Remote Attestation for Web Services," cse, vol. 3, pp.283-288, 2009 International Conference on Computational Science and Engineering, 2009

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.