Open dbosk opened 5 years ago
The DB-Schnorr protocol can run the Direct Anonymous Attestation protocol, so that should be possible.
At least mention this as future work.
We must prove that the TPM signature is valid while proving proximity of knowledge of the signing key.
I found some interesting papers:
The particular thing we want is Platform Integrity.
Can we use remote attestation to prove the trustworthiness of witnesses?
E.g. a witness uses the remote attestation module in the phone's hardware to prove it was running the correct version of the software (OS + CROCUS app) and submit that proof along with the proof share.
That should theoretically reduce the colluders' possibility to running a GPS spoofer against their own phone.