From Interaction to Independence: zkSNARKs for Transparent and Non-Interactive Remote Attestation

Shahriar Ebrahimi

Network and Distributed System Security (NDSS) Symposium 2024 · Day 3 · Authentication & E-Commerce

Remote Attestation (RA) is a cornerstone technology for verifying the integrity of software on remote devices, underpinning critical security protocols from secure boot to IoT security. However, traditional RA protocols are plagued by two significant limitations: a pervasive lack of transparency and an inherent interactive nature. Existing schemes often keep attestation verification details opaque, preventing independent validation by stakeholders, while their interactive demands restrict participation to a select, privileged few with access to confidential device data like pre-shared keys. This reliance on limited trusted entities and continuous interaction severely impedes scalability and broad adoption, particularly in expansive networks like the Internet of Things (IoT).