{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,5]],"date-time":"2026-06-05T15:34:35Z","timestamp":1780673675472,"version":"3.54.1"},"reference-count":40,"publisher":"Association for Computing Machinery (ACM)","issue":"5s","license":[{"start":{"date-parts":[[2023,9,9]],"date-time":"2023-09-09T00:00:00Z","timestamp":1694217600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"National Mission on Interdisciplinary Cyber-Physical Systems, Department of Science and Technology (DST), Govt. of India"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Trans. Embed. Comput. Syst."],"published-print":{"date-parts":[[2023,10,31]]},"abstract":"<jats:p>\n            Remote attestation is a request-response based security service that permits a trusted entity\u00a0(verifier) to check the current state of an untrusted remote device\u00a0(prover). The verifier initiates the attestation process by sending an attestation challenge to the prover; the prover responds with its current state, which establishes its trustworthiness. Physically Unclonable Function\u00a0(PUF) offers an attractive choice for hybrid attestation schemes owing to its low overhead security guarantees. However, this comes with the limitation of secure storage of the PUF model or large challenge-response database on the verifier end. To address these issues, in this work, we propose a hybrid attestation framework, named\n            <jats:sans-serif>PReFeR<\/jats:sans-serif>\n            , that leverages a new class of hardware primitive known as Physically Related Function\u00a0(PReF) to remotely attest low-end devices without the requirement of secure storage or heavy cryptographic operations. It comprises a static attestation scheme that validates the memory state of the remote device prior to code execution, followed by a dynamic run-time attestation scheme that asserts the correct code execution by evaluating the content of special registers present in embedded systems, known as hardware performance counters\u00a0(HPC). The use of HPCs in the dynamic attestation scheme mitigates the popular class of attack known as the time-of-check-time-of-use\u00a0(TOCTOU) attack, which has broken several state-of-the-art hybrid attestation schemes. We demonstrate our protocol and present our experimental results using a prototype implementation on Digilent Cora Z7 board, a low-cost embedded platform, specially designed for IoT applications.\n          <\/jats:p>","DOI":"10.1145\/3609104","type":"journal-article","created":{"date-parts":[[2023,9,9]],"date-time":"2023-09-09T13:33:18Z","timestamp":1694266398000},"page":"1-23","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":7,"title":["PReFeR :\n            <u>P<\/u>\n            hysically\n            <u>Re<\/u>\n            lated\n            <u>F<\/u>\n            unction bas\n            <u>e<\/u>\n            d\n            <u>R<\/u>\n            emote Attestation Protocol"],"prefix":"10.1145","volume":"22","author":[{"ORCID":"https:\/\/orcid.org\/0009-0009-0096-9288","authenticated-orcid":false,"given":"Anupam","family":"Mondal","sequence":"first","affiliation":[{"name":"Indian Institute of Technology Kharagpur, India"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0003-0718-8384","authenticated-orcid":false,"given":"Shreya","family":"Gangopadhyay","sequence":"additional","affiliation":[{"name":"Indian Institute of Technology Kharagpur, India"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-7665-0876","authenticated-orcid":false,"given":"Durba","family":"Chatterjee","sequence":"additional","affiliation":[{"name":"Indian Institute of Technology Kharagpur, India"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-2742-0772","authenticated-orcid":false,"given":"Harishma","family":"Boyapally","sequence":"additional","affiliation":[{"name":"Temasek Labs @ Nanyang Technological University, Singapore"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6499-8346","authenticated-orcid":false,"given":"Debdeep","family":"Mukhopadhyay","sequence":"additional","affiliation":[{"name":"Indian Institute of Technology Kharagpur, India"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2023,9,9]]},"reference":[{"key":"e_1_3_2_2_2","unstructured":"2017. Xilinx Performance Counter. https:\/\/github.com\/Xilinx\/embeddedsw\/blob\/master\/lib\/bsp\/standalone\/src\/arm\/cortexa9\/xpm_counter.h"},{"key":"e_1_3_2_3_2","unstructured":"2019. Arm Cortex A9 Special Purpose Register. https:\/\/developer.arm.com\/documentation\/dui0473\/m\/overview-of-the-arm-architecture\/arm-registers"},{"key":"e_1_3_2_4_2","unstructured":"2021. OpenOCD Sandbox. https:\/\/github.com\/tarek-bochkati\/openocd"},{"key":"e_1_3_2_5_2","unstructured":"2023. Cora Z7 Programmable Logic Reference Manual. https:\/\/digilent.com\/reference\/programmable-logic\/cora-z7\/reference-manual"},{"key":"e_1_3_2_6_2","doi-asserted-by":"crossref","first-page":"743","DOI":"10.1145\/2976749.2978358","volume-title":"Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security","author":"Abera Tigist","year":"2016","unstructured":"Tigist Abera, N. Asokan, Lucas Davi, Jan-Erik Ekberg, Thomas Nyman, Andrew Paverd, Ahmad-Reza Sadeghi, and Gene Tsudik. 2016. C-FLAT: Control-flow attestation for embedded systems software. In Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security. 743\u2013754."},{"key":"e_1_3_2_7_2","volume-title":"NDSS","author":"Abera Tigist","year":"2019","unstructured":"Tigist Abera, Raad Bahmani, Ferdinand Brasser, Ahmad Ibrahim, Ahmad-Reza Sadeghi, and Matthias Schunter. 2019. DIAT: Data integrity attestation for resilient collaboration of autonomous systems. In NDSS."},{"key":"e_1_3_2_8_2","doi-asserted-by":"publisher","DOI":"10.1007\/s13389-020-00232-9"},{"key":"e_1_3_2_9_2","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2020.2983655"},{"key":"e_1_3_2_10_2","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2018.2866623"},{"key":"e_1_3_2_11_2","doi-asserted-by":"crossref","DOI":"10.1007\/978-1-4302-6584-9","volume-title":"A Practical Guide to TPM 2.0: Using the New Trusted Platform Module in the New Age of Security","author":"Arthur Will","year":"2015","unstructured":"Will Arthur, David Challener, and Kenneth Goldman. 2015. A Practical Guide to TPM 2.0: Using the New Trusted Platform Module in the New Age of Security. Springer Nature."},{"key":"e_1_3_2_12_2","article-title":"Remote attestation: A literature review","author":"Banks Alexander Sprog\u00f8","year":"2021","unstructured":"Alexander Sprog\u00f8 Banks, Marek Kisiel, and Philip Korsholm. 2021. Remote attestation: A literature review. arXiv preprint arXiv:2105.02466 (2021).","journal-title":"arXiv preprint arXiv:2105.02466"},{"key":"e_1_3_2_13_2","doi-asserted-by":"crossref","first-page":"512","DOI":"10.1109\/TIFS.2019.2924549","article-title":"A theoretical study of hardware performance counters-based malware detection","volume":"15","author":"Basu Kanad","year":"2019","unstructured":"Kanad Basu, Prashanth Krishnamurthy, Farshad Khorrami, and Ramesh Karri. 2019. A theoretical study of hardware performance counters-based malware detection. IEEE Transactions on Information Forensics and Security 15 (2019), 512\u2013525.","journal-title":"IEEE Transactions on Information Forensics and Security"},{"key":"e_1_3_2_14_2","first-page":"1","volume-title":"Proceedings of the 52nd Annual Design Automation Conference","author":"Brasser Ferdinand","year":"2015","unstructured":"Ferdinand Brasser, Brahim El Mahjoub, Ahmad-Reza Sadeghi, Christian Wachsmann, and Patrick Koeberl. 2015. TyTAN: Tiny trust anchor for tiny devices. In Proceedings of the 52nd Annual Design Automation Conference. 1\u20136."},{"key":"e_1_3_2_15_2","doi-asserted-by":"publisher","DOI":"10.1145\/2897937.2898083"},{"key":"e_1_3_2_16_2","doi-asserted-by":"crossref","first-page":"9","DOI":"10.1109\/HST.2018.8383885","volume-title":"2018 IEEE International Symposium on Hardware Oriented Security and Trust (HOST\u201918)","author":"Carpent Xavier","year":"2018","unstructured":"Xavier Carpent, Norrathep Rattanavipanon, and Gene Tsudik. 2018. Remote attestation of IoT devices via SMARM: Shuffled measurements against roving malware. In 2018 IEEE International Symposium on Hardware Oriented Security and Trust (HOST\u201918). IEEE, 9\u201316."},{"key":"e_1_3_2_17_2","doi-asserted-by":"crossref","DOI":"10.1109\/TIFS.2022.3214089","article-title":"Physically related functions: Exploiting related inputs of PUFs for authenticated-key exchange","author":"Chatterjee Durba","year":"2022","unstructured":"Durba Chatterjee, Harishma Boyapally, Sikhar Patranabis, Urbi Chatterjee, Aritra Hazra, and Debdeep Mukhopadhyay. 2022. Physically related functions: Exploiting related inputs of PUFs for authenticated-key exchange. IEEE Transactions on Information Forensics and Security (2022).","journal-title":"IEEE Transactions on Information Forensics and Security"},{"key":"e_1_3_2_18_2","first-page":"2317","volume-title":"Proceedings of the 2019 ACM SIGSAC CCCS","author":"Chen Guoxing","year":"2019","unstructured":"Guoxing Chen, Yinqian Zhang, and Ten-Hwang Lai. 2019. Opera: Open remote attestation for intel\u2019s secure enclaves. In Proceedings of the 2019 ACM SIGSAC CCCS. 2317\u20132331."},{"key":"e_1_3_2_19_2","doi-asserted-by":"publisher","DOI":"10.1145\/3240765.3240821"},{"key":"e_1_3_2_20_2","first-page":"1","volume-title":"Proceedings of the 54th Annual Design Automation Conference 2017","author":"Dessouky Ghada","year":"2017","unstructured":"Ghada Dessouky, Shaza Zeitouni, Thomas Nyman, Andrew Paverd, Lucas Davi, Patrick Koeberl, N. Asokan, and Ahmad-Reza Sadeghi. 2017. LO-FAT: Low-overhead control flow attestation in hardware. In Proceedings of the 54th Annual Design Automation Conference 2017. 1\u20136."},{"key":"e_1_3_2_21_2","first-page":"1","volume-title":"Ndss","author":"Eldefrawy Karim","year":"2012","unstructured":"Karim Eldefrawy, Gene Tsudik, Aur\u00e9lien Francillon, and Daniele Perito. 2012. Smart: Secure and minimal architecture for (establishing dynamic) root of trust. In Ndss, Vol. 12. 1\u201315."},{"issue":"1","key":"e_1_3_2_22_2","doi-asserted-by":"crossref","first-page":"35","DOI":"10.1109\/TCAD.2021.3052856","article-title":"Runtime malware detection using embedded trace buffers","volume":"41","author":"Elnaggar Rana","year":"2021","unstructured":"Rana Elnaggar, Kanad Basu, Krishnendu Chakrabarty, and Ramesh Karri. 2021. Runtime malware detection using embedded trace buffers. IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems 41, 1 (2021), 35\u201348.","journal-title":"IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems"},{"issue":"6","key":"e_1_3_2_23_2","first-page":"29","article-title":"W32. stuxnet dossier","volume":"5","author":"Falliere Nicolas","year":"2011","unstructured":"Nicolas Falliere, Liam O. Murchu, and Eric Chien. 2011. W32. stuxnet dossier. White Paper, Symantec Corp., Security Response 5, 6 (2011), 29.","journal-title":"White Paper, Symantec Corp., Security Response"},{"key":"e_1_3_2_24_2","first-page":"675","volume-title":"CMIS","author":"Faure Emil","year":"2020","unstructured":"Emil Faure, Iryna Myronets, and Artem Lavdanskyi. 2020. Autocorrelation criterion for quality assessment of random number sequences. In CMIS. 675\u2013689."},{"key":"e_1_3_2_25_2","doi-asserted-by":"publisher","DOI":"10.1145\/586110.586132"},{"key":"e_1_3_2_26_2","first-page":"165","volume-title":"22nd International Symposium on Research in Attacks, Intrusions and Defenses (RAID\u201919)","author":"Ghaeini Hamid Reza","year":"2019","unstructured":"Hamid Reza Ghaeini, Matthew Chan, Raad Bahmani, Ferdinand Brasser, Luis Garcia, Jianying Zhou, Ahmad-Reza Sadeghi, Nils Ole Tippenhauer, and Saman Zonouz. 2019. PAtt: Physics-based attestation of control systems. In 22nd International Symposium on Research in Attacks, Intrusions and Defenses (RAID\u201919). 165\u2013180."},{"key":"e_1_3_2_27_2","unstructured":"Trusted Computing Group. 2018. https:\/\/trustedcomputinggroup.org\/work-groups\/dice-architectures\/"},{"key":"e_1_3_2_28_2","first-page":"85","volume-title":"2021 22nd International Symposium on Quality Electronic Design (ISQED\u201921)","author":"He Zhangying","year":"2021","unstructured":"Zhangying He, Tahereh Miari, Hosein Mohammadi Makrani, Mehrdad Aliasgari, Houman Homayoun, and Hossein Sayadi. 2021. When machine learning meets hardware cybersecurity: Delving into accurate zero-day malware detection. In 2021 22nd International Symposium on Quality Electronic Design (ISQED\u201921). IEEE, 85\u201390."},{"key":"e_1_3_2_29_2","doi-asserted-by":"crossref","first-page":"226","DOI":"10.1145\/3508398.3511507","volume-title":"Proceedings of the Twelveth ACM Conference on Data and Application Security and Privacy","author":"Hristozov Stefan","year":"2022","unstructured":"Stefan Hristozov, Moritz Wettermann, and Manuel Huber. 2022. A TOCTOU attack on DICE attestation. In Proceedings of the Twelveth ACM Conference on Data and Application Security and Privacy. 226\u2013235."},{"key":"e_1_3_2_30_2","doi-asserted-by":"publisher","DOI":"10.1145\/3390855"},{"key":"e_1_3_2_31_2","doi-asserted-by":"publisher","DOI":"10.1145\/3403943"},{"key":"e_1_3_2_32_2","first-page":"1","volume-title":"Proceedings of the Ninth European Conference on Computer Systems","author":"Koeberl Patrick","year":"2014","unstructured":"Patrick Koeberl, Steffen Schulz, Ahmad-Reza Sadeghi, and Vijay Varadharajan. 2014. TrustLite: A security architecture for tiny embedded devices. In Proceedings of the Ninth European Conference on Computer Systems. 1\u201314."},{"key":"e_1_3_2_33_2","first-page":"1","volume-title":"DAC 2014","author":"Kong Joonho","year":"2014","unstructured":"Joonho Kong, Farinaz Koushanfar, Praveen K. Pendyala, Ahmad-Reza Sadeghi, and Christian Wachsmann. 2014. PUFatt: Embedded platform attestation based on novel processor-based PUFs. In DAC 2014. IEEE, 1\u20136."},{"key":"e_1_3_2_34_2","doi-asserted-by":"crossref","DOI":"10.1109\/MDAT.2022.3143438","article-title":"HPC-based malware detectors actually work: Transition to practice after a decade of research","author":"Konstantinou Charalambos","year":"2022","unstructured":"Charalambos Konstantinou, Xueyang Wang, Prashanth Krishnamurthy, Farshad Khorrami, Michail Maniatakos, and Ramesh Karri. 2022. HPC-based malware detectors actually work: Transition to practice after a decade of research. IEEE Design & Test (2022).","journal-title":"IEEE Design & Test"},{"key":"e_1_3_2_35_2","doi-asserted-by":"publisher","DOI":"10.1145\/2046582.2046596"},{"key":"e_1_3_2_36_2","first-page":"1","volume-title":"2017 54th ACM\/EDAC\/IEEE Design Automation Conference (DAC\u201917)","author":"Patel Nisarg","year":"2017","unstructured":"Nisarg Patel, Avesta Sasan, and Houman Homayoun. 2017. Analyzing hardware based malware detectors. In 2017 54th ACM\/EDAC\/IEEE Design Automation Conference (DAC\u201917). IEEE, 1\u20136."},{"key":"e_1_3_2_37_2","doi-asserted-by":"publisher","DOI":"10.1145\/1866307.1866335"},{"key":"e_1_3_2_38_2","doi-asserted-by":"crossref","first-page":"109","DOI":"10.1145\/1998412.1998432","volume-title":"Proceedings of the fourth ACM Conference on Wireless Network Security","author":"Schulz Steffen","year":"2011","unstructured":"Steffen Schulz, Ahmad-Reza Sadeghi, and Christian Wachsmann. 2011. Short paper: Lightweight remote attestation using physical functions. In Proceedings of the fourth ACM Conference on Wireless Network Security. 109\u2013114."},{"key":"e_1_3_2_39_2","doi-asserted-by":"crossref","first-page":"272","DOI":"10.1109\/SECPRI.2004.1301329","volume-title":"IEEE Symposium on Security and Privacy, 2004. Proceedings. 2004","author":"Seshadri Arvind","year":"2004","unstructured":"Arvind Seshadri, Adrian Perrig, Leendert Van Doorn, and Pradeep Khosla. 2004. SWATT: Software-based attestation for embedded devices. In IEEE Symposium on Security and Privacy, 2004. Proceedings. 2004. IEEE, 272\u2013282."},{"key":"e_1_3_2_40_2","doi-asserted-by":"publisher","DOI":"10.1109\/ICCAD.2017.8203803"},{"key":"e_1_3_2_41_2","first-page":"457","volume-title":"Proceedings of the 2018 on AsiaCCS","author":"Zhou Boyou","year":"2018","unstructured":"Boyou Zhou, Anmol Gupta, Rasoul Jahanshahi, Manuel Egele, and Ajay Joshi. 2018. Hardware performance counters can detect malware: Myth or fact?. In Proceedings of the 2018 on AsiaCCS. 457\u2013468."}],"container-title":["ACM Transactions on Embedded Computing Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3609104","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3609104","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T17:48:58Z","timestamp":1750182538000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3609104"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,9,9]]},"references-count":40,"journal-issue":{"issue":"5s","published-print":{"date-parts":[[2023,10,31]]}},"alternative-id":["10.1145\/3609104"],"URL":"https:\/\/doi.org\/10.1145\/3609104","relation":{},"ISSN":["1539-9087","1558-3465"],"issn-type":[{"value":"1539-9087","type":"print"},{"value":"1558-3465","type":"electronic"}],"subject":[],"published":{"date-parts":[[2023,9,9]]},"assertion":[{"value":"2023-03-23","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2023-07-13","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2023-09-09","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}