Issue No. 05 - May (2012 vol. 61)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/TC.2011.60
T. Jaeger , Comput. Sci. & Eng. Dept., Pennsylvania State Univ., University Park, PA, USA
P. McDaniel , Comput. Sci. & Eng. Dept., Pennsylvania State Univ., University Park, PA, USA
J. Schiffman , Comput. Sci. & Eng. Dept., Pennsylvania State Univ., University Park, PA, USA
K. Butler , Dept. of Comput. & Inf. Sci., Univ. of Oregon, Eugene, OR, USA
T. Moyer , MIT Lincoln Lab., Lexington, MA, USA
The web is a primary means of information sharing for most organizations and people. Currently, a recipient of web content knows nothing about the environment in which that information was generated other than the specific server from whence it came (and even that information can be unreliable). In this paper, we develop and evaluate the Spork system that uses the Trusted Platform Module (TPM) to tie the web server integrity state to the web content delivered to browsers, thus allowing a client to verify that the origin of the content was functioning properly when the received content was generated and/or delivered. We discuss the design and implementation of the Spork service and its browser-side Firefox validation extension. In particular, we explore the challenges and solutions of scaling the delivery of mixed static and dynamic content to a large number of clients using exceptionally slow TPM hardware. We perform an in-depth empirical analysis of the Spork system within Apache web servers. This analysis shows Spork can deliver nearly 8,000 static or over 6,500 dynamic integrity-measured web objects per second. More broadly, we identify how TPM-based content web services can scale to large client loads with manageable overheads and deliver integrity-measured content with manageable overhead.
Web services, content management, data integrity, file servers, Internet, online front-ends, program verification, trusted computing, integrity-measured content, scalable Web content attestation, information sharing, Spork system, trusted platform module, Web server integrity state, Web browsers, browser-side Firefox validation extension, mixed static dynamic content, TPM hardware, Apache Web servers, dynamic integrity-measured Web objects per second, TPM-based content Web services, client loads, Web server, Browsers, Cryptography, Hardware, Web pages, scalable attestation., Trusted computing, integrity measurement, web system
T. Jaeger, P. McDaniel, J. Schiffman, K. Butler and T. Moyer, "Scalable Web Content Attestation," in IEEE Transactions on Computers, vol. 61, no. , pp. 686-699, 2012.