IDA: Hybrid Attestation with Support for Interrupts and TOCTOU
Fatemeh Arkannezhad
Network and Distributed System Security (NDSS) Symposium 2024 · Day 3 · Network & DDoS
In an era dominated by smart and embedded **IoT devices**, ensuring the integrity and trustworthiness of their software state is paramount. These devices, ranging from manufacturing equipment to healthcare sensors, are often resource-constrained and highly susceptible to sophisticated attacks. Remote attestation (RA) stands as a critical security primitive, allowing a trusted verifier to cryptographically ascertain the software state of a remote device before establishing trust for further interactions. While high-end systems leverage hardware-based **Trusted Execution Environments (TEEs)** for RA, their significant overheads render them impractical for the vast majority of low-end IoT devices. This gap has led to the development of software-only (SWATT) and **hybrid (software-hardware co-design)** methods, which aim to strike a balance between low overhead and strong security guarantees.