As the new computing service pattern of cloud computing develops rapidly, the security problem of cloud computing has become a hot research topic. Before the user passes important data or computing task to the cloud, the user of the cloud may want to verify the trusted status of the platform which actually carries out the computing task in the cloud. And the remote attestation mechanism in Trusted Computing is suited for the cloud user's verification need. In this paper, the property-based remote attestation mechanism in Trusted Computing is imported into clouding computing, and a property-based remote attestation method oriented to cloud computing is designed based on the characteristics of cloud computing. In this method, through the attestation proxy, the remote attestation of the computing platform's security property is realized without disclosing the platform's configuration, and users can validate the security property of the actual computing platform in the virtual cloud computing environment.
[1]
Ahmad-Reza Sadeghi,et al.
Property-based attestation for computing platforms: caring about properties, not mechanisms
,
2004,
NSPW '04.
[2]
James Kardach.
!"#$%&&%' Architecture Overview
,
2000
.
[3]
Ahmad-Reza Sadeghi,et al.
A protocol for property-based attestation
,
2006,
STC '06.
[4]
Ahmad-Reza Sadeghi,et al.
Property-Based Attestation without a Trusted Third Party
,
2008,
ISC.
[5]
M. Schunter,et al.
Property Attestation — Scalable and Privacy-friendly Security Assessment of Peer Computers
,
2004
.