Show simple item record

dc.contributor.advisorKulkarni, Prasad A
dc.contributor.authorGevargizian, Jason
dc.date.accessioned2019-10-28T22:44:10Z
dc.date.available2019-10-28T22:44:10Z
dc.date.issued2019-05-31
dc.date.submitted2019
dc.identifier.otherhttp://dissertations.umi.com/ku:16428
dc.identifier.urihttp://hdl.handle.net/1808/29654
dc.description.abstractMeasurers are critical to a remote attestation (RA) system to verify the integrity of a remote untrusted host. Runtime measurers in a dynamic RA system sample the dynamic program state of the host to form evidence in order to establish trust by a remote appraisal system. However, existing runtime measurers are tightly integrated with specific software. Such measurers need to be generated anew for each software, which is a manual process that is both challenging and tedious. In this paper we present a novel approach to decouple application-specific measurement policies from the measurers tasked with performing the actual runtime measurement. We describe the MSRR (MeaSeReR) Measurement Suite, a system of tools designed with the primary goal of reducing the high degree of manual effort required to produce measurement solutions at a per application basis. The MSRR suite prototypes a novel general-purpose measurement system, the MSRR Measurement System, that is agnostic of the target application. Furthermore, we describe a robust high-level measurement policy language, MSRR-PL, that can be used to write per application policies for the MSRR Measurer. Finally, we provide a tool to automatically generate MSRR-PL policies for target applications by leveraging state of the art static analysis tools. In this work, we show how the MSRR suite can be used to significantly reduce the time and effort spent on designing measurers anew for each application. We describe MSRR's robust querying language, which allows the appraisal system to accurately specify the what, when, and how to measure. We describe the capabilities and the limitations of our measurement policy generation tool. We evaluate MSRR's overhead and demonstrate its functionality by employing real-world case studies. We show that MSRR has an acceptable overhead on a host of applications with various measurement workloads.
dc.format.extent140 pages
dc.language.isoen
dc.publisherUniversity of Kansas
dc.rightsCopyright held by the author.
dc.subjectComputer science
dc.subjectdynamic measurement
dc.subjectintegrity measurement
dc.subjectmeasurement
dc.subjectmeasurer
dc.subjectremote attestation
dc.subjecttrusted computing
dc.titleMSRR: Leveraging dynamic measurement for establishing trust in remote attestation
dc.typeDissertation
dc.contributor.cmtememberAlexander, Perry
dc.contributor.cmtememberAgah, Arvin
dc.contributor.cmtememberLuo, Bo
dc.contributor.cmtememberLeonard, Kevin
dc.thesis.degreeDisciplineElectrical Engineering & Computer Science
dc.thesis.degreeLevelPh.D.
dc.identifier.orcid
dc.rights.accessrightsopenAccess


Files in this item

Thumbnail

This item appears in the following Collection(s)

Show simple item record