CISPA
Browse
cispa_all_3902.pdf (518.98 kB)

Formal Analysis of SPDM: Security Protocol and Data Model version 1.2

Download (518.98 kB)
conference contribution
posted on 2023-11-29, 18:25 authored by Cas CremersCas Cremers, Alexander DaxAlexander Dax, Aurora NaskaAurora Naska
DMTF is a standards organization by major industry players in IT infrastructure including AMD, Alibaba, Broadcom, Cisco, Dell, Google, Huawei, IBM, Intel, Lenovo, and NVIDIA, which aims to enable interoperability, e.g., including cloud, virtualization, network, servers and storage. It is currently standardizing a security protocol called SPDM, which aims to secure communication over the wire and to enable device attestation, notably also explicitly catering for communicating hardware components. The SPDM protocol inherits requirements and design ideas from IETF’s TLS 1.3. However, its state machines and transcript handling are substantially different and more complex. While architecture, specification, and open-source libraries of the current versions of SPDM are publicly available, these include no significant security analysis of any kind. In this work we develop the first formal models of the three modes of the SPDM protocol version 1.2.1, and formally analyze their main security properties

History

Preferred Citation

Cas Cremers, Alexander Dax and Aurora Naska. Formal Analysis of SPDM: Security Protocol and Data Model version 1.2. In: Usenix Security Symposium (USENIX-Security). 2023.

Primary Research Area

  • Reliable Security Guarantees

Name of Conference

Usenix Security Symposium (USENIX-Security)

Legacy Posted Date

2023-03-07

Open Access Type

  • Unknown

BibTeX

@inproceedings{cispa_all_3902, title = "Formal Analysis of SPDM: Security Protocol and Data Model version 1.2", author = "Cremers, Cas and Dax, Alexander and Naska, Aurora", booktitle="{Usenix Security Symposium (USENIX-Security)}", year="2023", }

Usage metrics

    Categories

    No categories selected

    Exports

    RefWorks
    BibTeX
    Ref. manager
    Endnote
    DataCite
    NLM
    DC