{"id":"https://openalex.org/W3022143186","doi":"https://doi.org/10.1145/3460120.3484532","title":"On the TOCTOU Problem in Remote Attestation","display_name":"On the TOCTOU Problem in Remote Attestation","publication_year":2021,"publication_date":"2021-11-12","ids":{"openalex":"https://openalex.org/W3022143186","doi":"https://doi.org/10.1145/3460120.3484532","mag":"3022143186"},"language":"en","primary_location":{"id":"doi:10.1145/3460120.3484532","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3460120.3484532","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3460120.3484532","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"preprint","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3460120.3484532","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5069912897","display_name":"Ivan De Oliveira Nunes","orcid":"https://orcid.org/0000-0003-3486-6550"},"institutions":[{"id":"https://openalex.org/I155173764","display_name":"Rochester Institute of Technology","ror":"https://ror.org/00v4yb702","country_code":"US","type":"education","lineage":["https://openalex.org/I155173764"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Ivan De Oliveira Nunes","raw_affiliation_strings":["Rochester Institute of Technology, Rochester, NY, USA","Rochester Institute of Technology , Rochester , NY , USA"],"affiliations":[{"raw_affiliation_string":"Rochester Institute of Technology, Rochester, NY, USA","institution_ids":["https://openalex.org/I155173764"]},{"raw_affiliation_string":"Rochester Institute of Technology , Rochester , NY , USA","institution_ids":["https://openalex.org/I155173764"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5075765037","display_name":"Sashidhar Jakkamsetti","orcid":"https://orcid.org/0000-0002-5338-3522"},"institutions":[{"id":"https://openalex.org/I204250578","display_name":"University of California, Irvine","ror":"https://ror.org/04gyf1771","country_code":"US","type":"education","lineage":["https://openalex.org/I204250578"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Sashidhar Jakkamsetti","raw_affiliation_strings":["University of California, Irvine, Irvine, CA, USA"],"affiliations":[{"raw_affiliation_string":"University of California, Irvine, Irvine, CA, USA","institution_ids":["https://openalex.org/I204250578"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5003935638","display_name":"Norrathep Rattanavipanon","orcid":null},"institutions":[{"id":"https://openalex.org/I131868736","display_name":"Prince of Songkla University","ror":"https://ror.org/0575ycz84","country_code":"TH","type":"education","lineage":["https://openalex.org/I131868736"]}],"countries":["TH"],"is_corresponding":false,"raw_author_name":"Norrathep Rattanavipanon","raw_affiliation_strings":["Prince of Songkla University, Phuket, Thailand","[Prince of Songkla University, Phuket, Thailand]"],"affiliations":[{"raw_affiliation_string":"Prince of Songkla University, Phuket, Thailand","institution_ids":["https://openalex.org/I131868736"]},{"raw_affiliation_string":"[Prince of Songkla University, Phuket, Thailand]","institution_ids":["https://openalex.org/I131868736"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5009882362","display_name":"Gene Tsudik","orcid":"https://orcid.org/0000-0002-8467-8614"},"institutions":[{"id":"https://openalex.org/I204250578","display_name":"University of California, Irvine","ror":"https://ror.org/04gyf1771","country_code":"US","type":"education","lineage":["https://openalex.org/I204250578"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Gene Tsudik","raw_affiliation_strings":["University of California, Irvine, Irvine, CA, USA"],"affiliations":[{"raw_affiliation_string":"University of California, Irvine, Irvine, CA, USA","institution_ids":["https://openalex.org/I204250578"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5069912897"],"corresponding_institution_ids":["https://openalex.org/I155173764"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":true,"cited_by_count":2,"citation_normalized_percentile":{"value":0.00537945,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":94,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"2921","last_page":"2936"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9966999888420105,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12122","display_name":"Physical Unclonable Functions (PUFs) and Hardware Security","score":0.9918000102043152,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8013559579849243},{"id":"https://openalex.org/keywords/overhead","display_name":"Overhead (engineering)","score":0.7530602216720581},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.6170005202293396},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.5506297945976257},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.4934953451156616},{"id":"https://openalex.org/keywords/distributed-computing","display_name":"Distributed computing","score":0.4368484318256378},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.2978164553642273}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8013559579849243},{"id":"https://openalex.org/C2779960059","wikidata":"https://www.wikidata.org/wiki/Q7113681","display_name":"Overhead (engineering)","level":2,"score":0.7530602216720581},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.6170005202293396},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.5506297945976257},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.4934953451156616},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.4368484318256378},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.2978164553642273}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/3460120.3484532","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3460120.3484532","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3460120.3484532","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},{"id":"mag:3022143186","is_oa":true,"landing_page_url":"https://arxiv.org/pdf/2005.03873v2","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"arXiv (Cornell University)","raw_type":null}],"best_oa_location":{"id":"doi:10.1145/3460120.3484532","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3460120.3484532","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3460120.3484532","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320306087","display_name":"Semiconductor Research Corporation","ror":"https://ror.org/047z4n946"},{"id":"https://openalex.org/F4320322437","display_name":"National Science and Technology Development Agency","ror":"https://ror.org/04vy95b61"}],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W3022143186.pdf","grobid_xml":"https://content.openalex.org/works/W3022143186.grobid-xml"},"referenced_works_count":65,"referenced_works":["https://openalex.org/W124732759","https://openalex.org/W161166442","https://openalex.org/W198928148","https://openalex.org/W1434079718","https://openalex.org/W1489391022","https://openalex.org/W1500485546","https://openalex.org/W1752315353","https://openalex.org/W1968465951","https://openalex.org/W1991756896","https://openalex.org/W2011728129","https://openalex.org/W2023035194","https://openalex.org/W2070775894","https://openalex.org/W2075095478","https://openalex.org/W2099613071","https://openalex.org/W2104948281","https://openalex.org/W2107740194","https://openalex.org/W2135274013","https://openalex.org/W2136310957","https://openalex.org/W2152605584","https://openalex.org/W2162800072","https://openalex.org/W2168816812","https://openalex.org/W2181293862","https://openalex.org/W2270478131","https://openalex.org/W2345650502","https://openalex.org/W2388447476","https://openalex.org/W2521073554","https://openalex.org/W2534678535","https://openalex.org/W2602856088","https://openalex.org/W2604623598","https://openalex.org/W2734401556","https://openalex.org/W2736210006","https://openalex.org/W2739746516","https://openalex.org/W2741580233","https://openalex.org/W2752493903","https://openalex.org/W2755997448","https://openalex.org/W2765131619","https://openalex.org/W2767162229","https://openalex.org/W2772142381","https://openalex.org/W2805525585","https://openalex.org/W2806634969","https://openalex.org/W2808465942","https://openalex.org/W2809340493","https://openalex.org/W2896993707","https://openalex.org/W2942806853","https://openalex.org/W2951658790","https://openalex.org/W2955653233","https://openalex.org/W2963520010","https://openalex.org/W2965443102","https://openalex.org/W2969761941","https://openalex.org/W2997695369","https://openalex.org/W2999744542","https://openalex.org/W3015593455","https://openalex.org/W3017753896","https://openalex.org/W3100817720","https://openalex.org/W3103497171","https://openalex.org/W3112403960","https://openalex.org/W3185178788","https://openalex.org/W6629085924","https://openalex.org/W6648250834","https://openalex.org/W6653220763","https://openalex.org/W6766646108","https://openalex.org/W6824390438","https://openalex.org/W6910390581","https://openalex.org/W7024579455","https://openalex.org/W7029850645"],"related_works":["https://openalex.org/W3213708112","https://openalex.org/W3092055797","https://openalex.org/W2741580233","https://openalex.org/W3103497171","https://openalex.org/W3136402206","https://openalex.org/W2884410253","https://openalex.org/W2979507955","https://openalex.org/W3081520195","https://openalex.org/W2772142381","https://openalex.org/W153121976","https://openalex.org/W1904191545","https://openalex.org/W2810856120","https://openalex.org/W2077688407","https://openalex.org/W3101333446","https://openalex.org/W3012067046","https://openalex.org/W2399135376","https://openalex.org/W2798537226","https://openalex.org/W2625875393","https://openalex.org/W2508667123","https://openalex.org/W3130382050"],"abstract_inverted_index":{"We":[0,53],"propose":[1],"Remote":[2],"Attestation":[3],"with":[4,66,98],"TOCTOU":[5,16,106],"Avoidance":[6],"(RATA):":[7],"a":[8,81],"provably":[9],"secure":[10,77],"approach":[11],"to":[12,75],"address":[13],"the":[14,28],"RA":[15,40,100,123],"problem.":[17],"With":[18],"RATA,":[19],"even":[20],"malware":[21],"that":[22,103],"erases":[23],"itself":[24],"before":[25],"execution":[26],"of":[27,94,122],"next":[29],"RA,":[30],"can":[31],"not":[32],"hide":[33],"its":[34],"ephemeral":[35],"presence.":[36],"RATA":[37,109,117],"targets":[38],"hybrid":[39],"architectures":[41,101],"(implemented":[42],"as":[43],"Hardware/Software":[44],"co-designs),":[45],"which":[46],"are":[47],"aimed":[48],"at":[49],"low-end":[50],"embedded":[51],"devices.":[52],"present":[54],"two":[55],"alternative":[56],"techniques":[57],"-":[58,62,102,108],"RATAa":[59],"and":[60,67,78,84],"RATAb":[61],"suitable":[63],"for":[64],"devices":[65],"without":[68],"real-time":[69],"clocks,":[70],"respectively.":[71],"Each":[72],"is":[73],"shown":[74],"be":[76],"accompanied":[79],"by":[80],"publicly":[82],"available":[83],"formally":[85],"verified":[86],"implementation.":[87],"Our":[88],"evaluation":[89],"demonstrates":[90],"low":[91],"hardware":[92],"overhead":[93],"both":[95],"techniques.":[96],"Compared":[97],"current":[99],"offer":[104],"no":[105,111],"protection":[107],"incurs":[110],"extra":[112],"runtime":[113],"overhead.":[114],"In":[115],"fact,":[116],"substantially":[118],"reduces":[119],"computational":[120],"costs":[121],"execution.":[124]},"counts_by_year":[{"year":2020,"cited_by_count":2}],"updated_date":"2025-11-25T21:42:39.735039","created_date":"2025-10-10T00:00:00"}