{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,3]],"date-time":"2026-02-03T18:56:34Z","timestamp":1770144994387,"version":"3.49.0"},"reference-count":18,"publisher":"Association for Computing Machinery (ACM)","issue":"4","license":[{"start":{"date-parts":[[2021,9,30]],"date-time":"2021-09-30T00:00:00Z","timestamp":1632960000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"NSA Science of Security Initiative","award":["#H98230-18-D-0009"],"award-info":[{"award-number":["#H98230-18-D-0009"]}]},{"DOI":"10.13039\/100000185","name":"DARPA","doi-asserted-by":"crossref","award":["#HR00111890001"],"award-info":[{"award-number":["#HR00111890001"]}],"id":[{"id":"10.13039\/100000185","id-type":"DOI","asserted-by":"crossref"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Trans. Priv. Secur."],"published-print":{"date-parts":[[2021,11,30]]},"abstract":"<jats:p>Remote attestation consists of generating evidence of a system\u2019s integrity via measurements and reporting the evidence to a remote party for appraisal in a form that can be trusted. The parties that exchange information must agree on formats and protocols. We assert there is a large variety of patterns of interactions among appraisers and attesters of interest. Therefore, it is important to standardize on flexible mechanisms for remote attestation. We make our case by describing scenarios that require the exchange of evidence among multiple parties using a variety of message passing patterns. We show cases in which changes in the order of evidence collection result in important differences to what can be inferred by an appraiser. We argue that adding the ability to negotiate the appropriate kind of attestation allows for remote attestations that better adapt to a dynamically changing environment. Finally, we suggest a language-based solution to taming the complexity of specifying and negotiating attestation procedures.<\/jats:p>","DOI":"10.1145\/3470535","type":"journal-article","created":{"date-parts":[[2021,9,30]],"date-time":"2021-09-30T17:09:46Z","timestamp":1633021786000},"page":"1-23","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":17,"title":["Flexible Mechanisms for Remote Attestation"],"prefix":"10.1145","volume":"24","author":[{"given":"Sarah C.","family":"Helble","sequence":"first","affiliation":[{"name":"Johns Hopkins University Applied Physics Laboratory, Laurel, MD"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ian D.","family":"Kretz","sequence":"additional","affiliation":[{"name":"The MITRE Corporation, Bedford, MA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Peter A.","family":"Loscocco","sequence":"additional","affiliation":[{"name":"National Security Agency, Fort Meade, MD, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"John D.","family":"Ramsdell","sequence":"additional","affiliation":[{"name":"The MITRE Corporation, Bedford, MA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Paul D.","family":"Rowe","sequence":"additional","affiliation":[{"name":"The MITRE Corporation, Bedford, MA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5387-9157","authenticated-orcid":false,"given":"Perry","family":"Alexander","sequence":"additional","affiliation":[{"name":"The University of Kansas, Lawrence, KS, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2021,9,30]]},"reference":[{"key":"e_1_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10207-011-0124-7"},{"key":"e_1_2_1_2_1","series-title":"Lecture Notes in Computer Science","volume-title":"Sniffen","author":"Coker George S.","year":"2008","unstructured":"George S. Coker , Joshua D. Guttman , Peter A. Loscocco , Justin Sheehy , and Brian T . Sniffen . 2008 . Attestation : Evidence and trust. In Information and Communications Security, Lecture Notes in Computer Science , Vol. 5308 . Springer , 1\u201318. George S. Coker, Joshua D. Guttman, Peter A. Loscocco, Justin Sheehy, and Brian T. Sniffen. 2008. Attestation: Evidence and trust. In Information and Communications Security, Lecture Notes in Computer Science, Vol. 5308. Springer, 1\u201318."},{"key":"e_1_2_1_3_1","unstructured":"C. Fisher D. Bukovick R. Bourquin and R. Dobry. 2012. SAMSON\u2014Secure Authentication Modules. General Dynamics C4S. Retrieved August 9 2021 from https:\/\/sourceforge.net\/p\/secureauthentic\/wiki\/Home\/.  C. Fisher D. Bukovick R. Bourquin and R. Dobry. 2012. SAMSON\u2014Secure Authentication Modules. General Dynamics C4S. Retrieved August 9 2021 from https:\/\/sourceforge.net\/p\/secureauthentic\/wiki\/Home\/."},{"key":"e_1_2_1_4_1","volume-title":"Proceedings of the USENIX Virtual Machine Research and Technology Symposium.","author":"Haldar Vivek","year":"2004","unstructured":"Vivek Haldar , Deepak Chandra , and Michael Franz . 2004 . Semantic remote attestation\u2014A virtual machine directed approach to trusted computing . In Proceedings of the USENIX Virtual Machine Research and Technology Symposium. Vivek Haldar, Deepak Chandra, and Michael Franz. 2004. Semantic remote attestation\u2014A virtual machine directed approach to trusted computing. In Proceedings of the USENIX Virtual Machine Research and Technology Symposium."},{"key":"e_1_2_1_5_1","unstructured":"IBM. 2015. OpenAttestation (OAT) Project. Retrieved August 9 2021 from https:\/\/wiki.openstack.org\/wiki\/ OpenAttestation.  IBM. 2015. OpenAttestation (OAT) Project. Retrieved August 9 2021 from https:\/\/wiki.openstack.org\/wiki\/ OpenAttestation."},{"key":"e_1_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1145\/1743546.1743574"},{"key":"e_1_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1145\/2535838.2535841"},{"key":"e_1_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1145\/1314354.1314362"},{"key":"e_1_2_1_9_1","volume-title":"Internet Security Association and Key Management Protocol RFC 2048 (ISAKMP). Technical Report. The Internet Engineering Task Force of the Internet Society.","author":"Maughan D.","unstructured":"D. Maughan , M. Schertler , Schneider M., and J. Turner . 1998 . Internet Security Association and Key Management Protocol RFC 2048 (ISAKMP). Technical Report. The Internet Engineering Task Force of the Internet Society. D. Maughan, M. Schertler, Schneider M., and J. Turner. 1998. Internet Security Association and Key Management Protocol RFC 2048 (ISAKMP). Technical Report. The Internet Engineering Task Force of the Internet Society."},{"key":"e_1_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/MILCOM.2018.8599735"},{"key":"e_1_2_1_11_1","volume-title":"Proceedings of the 2019 IEEE Military Communications Conference (MILCOM\u201919)","author":"Pendergrass J. A.","unstructured":"J. A. Pendergrass , N. Hull , J. Clemens , S. C. Helble , M. Thober , K. McGill , M. Gregory , and P. Loscocco . 2019. Runtime detection of userspace implants . In Proceedings of the 2019 IEEE Military Communications Conference (MILCOM\u201919) . IEEE, Los Alamitos, CA, 1\u20136. J. A. Pendergrass, N. Hull, J. Clemens, S. C. Helble, M. Thober, K. McGill, M. Gregory, and P. Loscocco. 2019. Runtime detection of userspace implants. In Proceedings of the 2019 IEEE Military Communications Conference (MILCOM\u201919). IEEE, Los Alamitos, CA, 1\u20136."},{"key":"e_1_2_1_12_1","volume-title":"Proceedings of the 6th Annual Symposium on Hot Topics in Science of Security (HoTSoS\u201919)","author":"Petz A.","unstructured":"A. Petz and P. Alexander . 2019. A Copland attestation manager . In Proceedings of the 6th Annual Symposium on Hot Topics in Science of Security (HoTSoS\u201919) . ACM, New York, NY. A. Petz and P. Alexander. 2019. A Copland attestation manager. In Proceedings of the 6th Annual Symposium on Hot Topics in Science of Security (HoTSoS\u201919). ACM, New York, NY."},{"key":"e_1_2_1_13_1","volume-title":"Proceedings of the NASA Formal Methods Symposium (NFM\u201921)","author":"Petz A.","unstructured":"A. Petz and P. Alexander . 2021. An infrastructure for faithful execution of remote attestation protocols . In Proceedings of the NASA Formal Methods Symposium (NFM\u201921) . 268\u2013286. A. Petz and P. Alexander. 2021. An infrastructure for faithful execution of remote attestation protocols. In Proceedings of the NASA Formal Methods Symposium (NFM\u201921). 268\u2013286."},{"key":"e_1_2_1_14_1","volume-title":"Lecture Notes in Computer Science","volume":"7871","author":"Ramsdell J.","unstructured":"J. Ramsdell , P. D. Rowe , P. Alexander , S. Helble , P. Loscocco , J. A. Pendergrass , and A. Petz . 2019. Orchestrating layered attestations. In Principles of Security and Trust (POST\u201919) . Lecture Notes in Computer Science , Vol. 7871 . Springer, 197\u2013221. J. Ramsdell, P. D. Rowe, P. Alexander, S. Helble, P. Loscocco, J. A. Pendergrass, and A. Petz. 2019. Orchestrating layered attestations. In Principles of Security and Trust (POST\u201919). Lecture Notes in Computer Science, Vol. 7871. Springer, 197\u2013221."},{"key":"e_1_2_1_15_1","volume-title":"Trust and Trustworthy Computing","author":"Rowe Paul D.","unstructured":"Paul D. Rowe . 2016a. Bundling evidence for layered attestation . In Trust and Trustworthy Computing . Springer International Publishing , Cham, Switzerland , 119\u2013139. Paul D. Rowe. 2016a. Bundling evidence for layered attestation. In Trust and Trustworthy Computing. Springer International Publishing, Cham, Switzerland, 119\u2013139."},{"key":"e_1_2_1_16_1","series-title":"Lecture Notes in Computer Science","volume-title":"Graphical Models for Security (CraMSec\u201916)","author":"Rowe P. D.","unstructured":"P. D. Rowe . 2016b. Confining adversary actions via measurement . In Graphical Models for Security (CraMSec\u201916) . Lecture Notes in Computer Science , Vol. 9987 . Springer , 150\u2013166. P. D. Rowe. 2016b. Confining adversary actions via measurement. In Graphical Models for Security (CraMSec\u201916). Lecture Notes in Computer Science, Vol. 9987. Springer, 150\u2013166."},{"key":"e_1_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.5120\/8738-2991"},{"key":"e_1_2_1_18_1","volume-title":"TNC Architecture for Interoperability version 1.5 (1.5 ed.)","author":"TCG.","unstructured":"TCG. 2012. TNC Architecture for Interoperability version 1.5 (1.5 ed.) . Trusted Computing Group . TCG. 2012. TNC Architecture for Interoperability version 1.5 (1.5 ed.). Trusted Computing Group."}],"container-title":["ACM Transactions on Privacy and Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3470535","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3470535","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3470535","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T20:18:54Z","timestamp":1750191534000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3470535"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,9,30]]},"references-count":18,"journal-issue":{"issue":"4","published-print":{"date-parts":[[2021,11,30]]}},"alternative-id":["10.1145\/3470535"],"URL":"https:\/\/doi.org\/10.1145\/3470535","relation":{},"ISSN":["2471-2566","2471-2574"],"issn-type":[{"value":"2471-2566","type":"print"},{"value":"2471-2574","type":"electronic"}],"subject":[],"published":{"date-parts":[[2021,9,30]]},"assertion":[{"value":"2020-10-01","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2021-06-01","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2021-09-30","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}