{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,17]],"date-time":"2026-03-17T03:33:27Z","timestamp":1773718407744,"version":"3.50.1"},"reference-count":43,"publisher":"MDPI AG","issue":"5","license":[{"start":{"date-parts":[[2025,5,2]],"date-time":"2025-05-02T00:00:00Z","timestamp":1746144000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"name":"INHA UNIVERSITY Research Grant","award":["71335-1"],"award-info":[{"award-number":["71335-1"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Symmetry"],"abstract":"<jats:p>In cloud computing environments, security challenges emerge due to compromised firmware and supply chain attacks that target devices deployed within data centers. The Secure Protocol and Data Model (SPDM) has been widely adopted for device attestation, which verifies device identity and firmware integrity. However, the scalability of the SPDM is challenged by the resource constraints of peripheral devices and the inherent asymmetry of the protocol, where a heavy verification burden on the central requester leads to a potential bottleneck. In order to solve these problems, we propose a secure and scalable device attestation protocol, SPDM-AggSig, that integrates a chainless-certificate-based aggregate signature scheme within the SPDM framework supporting group messaging. Our protocol reduces the communication overhead by replacing the conventional X.509 certificates with lightweight chainless certificates. It also improves the scalability through group-based attestation with constant-size aggregated signatures. The proposed delegation mitigates the asymmetry in the attestation, introducing a tendency toward functional symmetry by distributing the verification burdens from the central requester to group leaders. We also provide a formal security proof demonstrating existential unforgeability under an adaptive chosen message attack (EUF-ACMA). SPDM-AggSig achieves an approximately 84.18% improvement in the computation overhead and a 96.22% decrease in the communication overhead compared to the baseline.<\/jats:p>","DOI":"10.3390\/sym17050698","type":"journal-article","created":{"date-parts":[[2025,5,4]],"date-time":"2025-05-04T20:42:37Z","timestamp":1746391357000},"page":"698","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":2,"title":["Secure and Scalable Device Attestation Protocol with Aggregate Signature"],"prefix":"10.3390","volume":"17","author":[{"given":"Hyunsoo","family":"Kwon","sequence":"first","affiliation":[{"name":"Department of Computer Engineering, Inha University, Incheon 22212, Republic of Korea"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"1968","published-online":{"date-parts":[[2025,5,2]]},"reference":[{"key":"ref_1","unstructured":"Ryan, C. (2025, April 29). Tech Tampering: Are Hardware Supply Chain Attacks on the Rise? 2024. Online Resource. Available online: https:\/\/www.siliconrepublic.com\/enterprise\/hp-wolf-security-hardware-attacks-tampering."},{"key":"ref_2","unstructured":"Plumb, T. (2025, April 29). HP Wolf: Not Just Software Attacks; Hackers Are Coming for Enterprise Hardware, Too. Online Resource. Available online: https:\/\/venturebeat.com\/security\/hp-wolf-not-just-software-attacks-hackers-are-coming-for-enterprise-hardware-too\/."},{"key":"ref_3","unstructured":"Holland, A. (2025, April 29). Hardware Supply Chain Threats Can Undermine Your Endpoint Infrastructure. Online Resource. Available online: https:\/\/www.techradar.com\/pro\/hardware-supply-chain-threats-can-undermine-your-endpoint-infrastructure."},{"key":"ref_4","unstructured":"DMTF (2025, April 29). Distributed Management Task Force. Online Resource, Available online: https:\/\/www.dmtf.org\/."},{"key":"ref_5","unstructured":"DMTF (2025, April 29). DSP0274 Security Protocol and Data Model (SPDM) Specification. Version 1.3. Online Resource. Available online: https:\/\/www.dmtf.org\/sites\/default\/files\/standards\/documents\/DSP0274_1.3.0.pdf."},{"key":"ref_6","unstructured":"Rescorla, E. (2025, April 29). The Transport Layer Security (TLS) Protocol Version 1.3. RFC 8446. Available online: https:\/\/www.rfc-editor.org\/info\/rfc8446."},{"key":"ref_7","unstructured":"Boeyen, S., Santesson, S., Polk, T., Housley, R., Farrell, S., and Cooper, D. (2025, April 29). Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile. RFC 5280. Available online: https:\/\/www.rfc-editor.org\/info\/rfc5280."},{"key":"ref_8","doi-asserted-by":"crossref","unstructured":"Niu, Z., Jiang, H., Zhou, K., Yang, T., and Yan, W. (2009, January 9\u201311). Identification and authentication in large-scale storage systems. Proceedings of the 2009 IEEE International Conference on Networking, Architecture, and Storage, Zhangjiajie, China.","DOI":"10.1109\/NAS.2009.72"},{"key":"ref_9","doi-asserted-by":"crossref","unstructured":"Goel, A., and Rahulamathavan, Y. (2024). A Comparative Survey of Centralised and Decentralised Identity Management Systems: Analysing Scalability, Security, and Feasibility. Future Internet, 17.","DOI":"10.3390\/fi17010001"},{"key":"ref_10","doi-asserted-by":"crossref","first-page":"72","DOI":"10.1109\/JSYST.2022.3188012","article-title":"An efficient certificate-based aggregate signature scheme with provable security for Industrial Internet of Things","volume":"17","author":"Qiao","year":"2022","journal-title":"IEEE Syst. J."},{"key":"ref_11","doi-asserted-by":"crossref","first-page":"2563","DOI":"10.1109\/JIOT.2019.2944632","article-title":"CB-CAS: Certificate-based efficient signature scheme with compact aggregation for industrial Internet of Things environment","volume":"7","author":"Verma","year":"2019","journal-title":"IEEE Internet Things J."},{"key":"ref_12","unstructured":"CXL (2025, April 29). Compute Express Link. Online Resource. Available online: https:\/\/computeexpresslink.org\/."},{"key":"ref_13","unstructured":"MIPI (2025, April 29). Mobile Industry Processor Interface. Online Resource. Available online: https:\/\/www.mipi.org\/."},{"key":"ref_14","unstructured":"TCG (2025, April 29). Trusted Computing Group. Online Resource. Available online: https:\/\/trustedcomputinggroup.org\/."},{"key":"ref_15","unstructured":"Intel Corporation (2022). Intel\u00ae Trust Domain Extensions (Intel\u00ae TDX), Intel Corporation. Available online: https:\/\/www.intel.com\/content\/www\/us\/en\/developer\/articles\/technical\/intel-trust-domain-extensions.html."},{"key":"ref_16","first-page":"12","article-title":"AMD memory encryption","volume":"13","author":"Kaplan","year":"2016","journal-title":"White Pap."},{"key":"ref_17","unstructured":"DigiCert (2025, April 29). DigiCert Website. Online Resource. Available online: https:\/\/www.digicert.com\/."},{"key":"ref_18","unstructured":"Encrypt, L. (2025, April 29). Let\u2019s Encrypt Website. Online. Available online: https:\/\/letsencrypt.org\/."},{"key":"ref_19","unstructured":"GlobalSign (2025, April 29). GlobalSign Website. Online Resource. Available online: https:\/\/www.globalsign.com\/en."},{"key":"ref_20","unstructured":"TCG (2025, April 29). Device Identifier Composition Engine (DICE). Online Resource. Available online: https:\/\/trustedcomputinggroup.org\/wp-content\/uploads\/DICE-Layering-Architecture-r19_pub.pdf."},{"key":"ref_21","unstructured":"Samsung (2025, April 29). Root CA Certificate for SSD Attestation. Online Resource. Available online: https:\/\/download.semiconductor.samsung.com\/resources\/certificate\/Samsung_Memory_RootCA.crt."},{"key":"ref_22","unstructured":"Netflix (2025, April 29). Bless: SSH Certificate Authority. Available online: https:\/\/github.com\/Netflix\/bless."},{"key":"ref_23","doi-asserted-by":"crossref","first-page":"48","DOI":"10.1016\/j.ins.2015.04.033","article-title":"An efficient certificateless aggregate signature with conditional privacy-preserving for vehicular sensor networks","volume":"317","author":"Horng","year":"2015","journal-title":"Inf. Sci."},{"key":"ref_24","first-page":"80","article-title":"A certificateless aggregate signature scheme for healthcare wireless sensor network","volume":"18","author":"Kumar","year":"2018","journal-title":"Sustain. Comput. Inform. Syst."},{"key":"ref_25","doi-asserted-by":"crossref","first-page":"337","DOI":"10.1016\/j.ins.2014.09.065","article-title":"Cryptanalysis and improvement of a certificateless aggregate signature scheme","volume":"295","author":"Cheng","year":"2015","journal-title":"Inf. Sci."},{"key":"ref_26","doi-asserted-by":"crossref","first-page":"1637","DOI":"10.1109\/JSYST.2021.3116029","article-title":"eCLAS: An efficient pairing-free certificateless aggregate signature for secure VANET communication","volume":"16","author":"Han","year":"2021","journal-title":"IEEE Syst. J."},{"key":"ref_27","doi-asserted-by":"crossref","first-page":"1908","DOI":"10.1109\/JIOT.2020.3019304","article-title":"Efficient and secure certificateless aggregate signature-based authentication scheme for vehicular ad hoc networks","volume":"8","author":"Thumbur","year":"2020","journal-title":"IEEE Internet Things J."},{"key":"ref_28","doi-asserted-by":"crossref","first-page":"103175","DOI":"10.1016\/j.sysarc.2024.103175","article-title":"IPCAS: An improved conditional privacy-preserving certificateless aggregate signature scheme without bilinear pairing for VANETs","volume":"152","author":"Wu","year":"2024","journal-title":"J. Syst. Archit."},{"key":"ref_29","doi-asserted-by":"crossref","first-page":"103030","DOI":"10.1016\/j.sysarc.2023.103030","article-title":"An efficient and secure certificateless aggregate signature scheme","volume":"147","author":"Xu","year":"2024","journal-title":"J. Syst. Archit."},{"key":"ref_30","first-page":"1747","article-title":"A Lightweight Certificate-Based Aggregate Signature Scheme Providing Key Insulation","volume":"69","author":"Hwang","year":"2021","journal-title":"Comput. Mater. Contin."},{"key":"ref_31","doi-asserted-by":"crossref","first-page":"1704","DOI":"10.1109\/JSYST.2019.2921788","article-title":"PFCBAS: Pairing free and provable certificate-based aggregate signature scheme for the e-healthcare monitoring system","volume":"14","author":"Verma","year":"2019","journal-title":"IEEE Syst. J."},{"key":"ref_32","doi-asserted-by":"crossref","first-page":"9305","DOI":"10.1109\/JIOT.2021.3055843","article-title":"SCBS: A short certificate-based signature scheme with efficient aggregation for industrial-internet-of-things environment","volume":"8","author":"Verma","year":"2021","journal-title":"IEEE Internet Things J."},{"key":"ref_33","first-page":"2011","article-title":"CB-DA: Lightweight and escrow-free certificate-based data aggregation for smart grid","volume":"20","author":"Verma","year":"2022","journal-title":"IEEE Trans. Dependable Secur. Comput."},{"key":"ref_34","doi-asserted-by":"crossref","first-page":"290","DOI":"10.1049\/iet-net.2020.0019","article-title":"Efficient certificate-based aggregate signature scheme for vehicular ad hoc networks","volume":"9","author":"Chen","year":"2020","journal-title":"IET Netw."},{"key":"ref_35","unstructured":"Miller, V.S. (1985). Use of elliptic curves in cryptography. Conference on the Theory and Application of Cryptographic Techniques, Springer."},{"key":"ref_36","doi-asserted-by":"crossref","first-page":"203","DOI":"10.1090\/S0025-5718-1987-0866109-5","article-title":"Elliptic curve cryptosystems","volume":"48","author":"Koblitz","year":"1987","journal-title":"Math. Comput."},{"key":"ref_37","unstructured":"NVIDIA (2025, April 29). GPUDirect RDMA. Online Resource. Available online: https:\/\/docs.nvidia.com\/cuda\/gpudirect-rdma\/."},{"key":"ref_38","unstructured":"Meier, S., Schmidt, B., Cremers, C., and Basin, D. (2013, January 13\u201319). The TAMARIN prover for the symbolic analysis of security protocols. Proceedings of the Computer Aided Verification: 25th International Conference, CAV 2013, Saint Petersburg, Russia. Proceedings 25."},{"key":"ref_39","unstructured":"Cremers, C., Dax, A., and Naska, A. (2023, January 9\u201311). Formal Analysis of {SPDM}: Security Protocol and Data Model version 1.2. Proceedings of the 32nd USENIX Security Symposium (USENIX Security 23), Anaheim, CA, USA."},{"key":"ref_40","doi-asserted-by":"crossref","unstructured":"Yao, J., Matusiewicz, K., and Zimmer, V. (2022). Post quantum design in SPDM for device authentication and key establishment. Cryptography, 6.","DOI":"10.3390\/cryptography6040048"},{"key":"ref_41","doi-asserted-by":"crossref","first-page":"361","DOI":"10.1007\/s001450010003","article-title":"Security arguments for digital signatures and blind signatures","volume":"13","author":"Pointcheval","year":"2000","journal-title":"J. Cryptol."},{"key":"ref_42","unstructured":"OpenSSL (2025, April 29). OpenSSL Library 3.4.0. Online Resource. Available online: https:\/\/openssl-library.org\/source\/."},{"key":"ref_43","unstructured":"NIST (2025, April 29). Elliptic Curve Cryptographic Curve. Online Resource, Available online: https:\/\/csrc.nist.gov\/projects\/elliptic-curve-cryptography."}],"container-title":["Symmetry"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/2073-8994\/17\/5\/698\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,9]],"date-time":"2025-10-09T17:26:23Z","timestamp":1760030783000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/2073-8994\/17\/5\/698"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,5,2]]},"references-count":43,"journal-issue":{"issue":"5","published-online":{"date-parts":[[2025,5]]}},"alternative-id":["sym17050698"],"URL":"https:\/\/doi.org\/10.3390\/sym17050698","relation":{},"ISSN":["2073-8994"],"issn-type":[{"value":"2073-8994","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025,5,2]]}}}