EAPA: Efficient Attestation Resilient to Physical Attacks for IoT Devices

The wide deployment of devices in Internet of Things (IoT) not only brings many benefits, but also incurs some security challenges. Remote attestation becomes an attractive method to guarantee the security of IoT devices. Unfortunately, most current attestation schemes only focus on the software attacks, but cannot detect the physical attacks. Several remote attestation schemes resilient to physical attacks still have some drawbacks in energy consumption, runtime, and security. In this paper, we propose an Efficient Attestation scheme resilient to Physical Attacks (EAPA) for IoT devices. We exploit a distributed attestation mode to make the protocol be executed in parallel, which reduces the total runtime to $O(1)$. Besides, we introduce an accusation mechanism to report compromised devices and design a new key update method, ensuring the efficiency and the security of our scheme. Furthermore, we present the security analysis and the performance evaluation of EAPA. The results indicate that EAPA has the lowest energy and runtime consumption compared with related works. Particularly, it shows a constant value in terms of runtime consumption.