Remote attestation for trusted witnesses?

[dbosk]

Can we use remote attestation to prove the trustworthiness of witnesses?

E.g. a witness uses the remote attestation module in the phone's hardware to prove it was running the correct version of the software (OS + CROCUS app) and submit that proof along with the proof share.

That should theoretically reduce the colluders' possibility to running a GPS spoofer against their own phone.

[dbosk]

The DB-Schnorr protocol can run the Direct Anonymous Attestation protocol, so that should be possible.

[dbosk]

At least mention this as future work.

[dbosk]

We must prove that the TPM signature is valid while proving proximity of knowledge of the signing key.

[dbosk]

I found some interesting papers:

• Remote attestation for embedded systems
• Improving smartphone security with remote attestation (master's thesis)

[dbosk]

The particular thing we want is Platform Integrity.