SRAS: Self-governed Remote Attestation Scheme for Multi-party Collaboration

TL;DR

SRAS introduces a decentralized remote attestation scheme for multi-party cloud environments, enabling trust verification of TEEs without data leakage, through a self-governed, verifiable network platform.

Contribution

It proposes a novel self-governed remote attestation scheme with a Relying Party enclave for decentralized trust verification in multi-party cloud computing.

Findings

Designed a Relying Party enclave for local verification

Implemented an open-source prototype of SRAS

Achieved decentralized trusted attestation platform

Abstract

Trusted Execution Environments (TEEs), such as Intel Software Guard Extensions (SGX), ensure the confidentiality and integrity of user applications when using cloud computing resources. However, in the multi-party cloud computing scenario, how to select a Relying Party to verify the TEE of each party and avoid leaking sensitive data to each other remains an open question. In this paper, we propose SRAS, an open self-governed remote attestation scheme with attestation and verification functions for verifying the trustworthiness of TEEs and computing assets, achieving decentralized unified trusted attestation and verification platform for multi-party cloud users. In SRAS, we design a Relying Party enclave, which can form a virtual verifiable network, capable of local verification on behalf of other participants relying parties without leaking sensitive data to others. We provide an open-source prototype implementation of SRAS to facilitate the adoption of this technology by cloud users or developers.