Muhammad Usama Sardar – RIOT Summit 2025

Muhammad Usama Sardar (TU Dresden)

Title:

Design Space for Attested TLS Protocols

Biography:

Muhammad Usama Sardar has been working at TU Dresden since October 2017. He also serves as the co-chair of the Trusted Research Environment (TRE) Open Suite in The Global Alliance for Genomics and Health. He led the completed TEE formal specification project and currently leads the Key Broker Service (KBS) formal verification project in Confidential Computing Consortium (CCC) Attestation Special Interest Group (SIG).

He also contributes to various research networks, such as EuroProofNet (WG3), Méthodes formelles pour la sécurité, Internet Research Task Force (IRTF) Usable Formal Methods Research Group (UFMRG), as well as engineering networks, such as Internet Engineering Task Force (IETF) Remote ATtestation procedureS(RATS), Transport Layer Security (TLS), and Workload Identity in Multi System Environments (WIMSE) working groups.

Abstract:

This talk builds upon the talk by Hannes Tschofenig in RIOT Summit 2024 on “Is Remote Attestation Relevant for Embedded Devices?”

In this talk, we will present a comprehensive overview of the design space for attested TLS protocol, which is a composition of remote attestation in TLS protocol. We will discuss the pros and cons of each category of solution in the design space from a security perspective for embedded devices. We will also present the latest developments of the standardization work on attested TLS protocol in the IETF.