论文信息 - User-policy-based dynamic remote attestation in cloud computing

User-policy-based dynamic remote attestation in cloud computing

As one of the most influential technologies, cloud computing brings users more benefits and improves the efficiency of computing in comparison to the traditional model. However, it also introduces a number of unknown risks and challenges, upon which effectiveness and efficiency of those traditional security protection solutions could have very little influence. We introduce DTEM into JVM, which gives robust trust guarantees to Java applications and makes a dynamic attestation about the integrity state of the current applications. DTEM advanced the state of the art in trusted computing and is designed to tackle the dynamic issues by verifying the runtime bytecode integrity of these applications in cloud environments. DTEM not only provides user-defined policy to determine the complexity of integrity checks and the frequency of their executions, but also enhances the availability to pledge the continuous business. What is more, it has less impact on execution performance of cloud applications.

[1] Bo Zhao,et al. Research on trusted computing and its development , 2010, Science China Information Sciences.

[2] Klaus Zaerens,et al. Gaining the profits of cloud computing in a public authority environment , 2012, Int. J. Comput. Sci. Eng..

[3] Antonio Puliafito,et al. Managing volunteer resources in the cloud , 2013, Int. J. Comput. Sci. Eng..

[4] Randy H. Katz,et al. A view of cloud computing , 2010, CACM.

[5] Emil C. Lupu,et al. Policy Driven Remote Attestation , 2011, MobiSec.

[6] Khaled M. Khan,et al. Establishing Trust in Cloud Computing , 2010, IT Professional.

[7] Balwinder Sodhi,et al. An architecture for enterprise PC cloud , 2012, Int. J. Comput. Sci. Eng..

[8] Michael Franz,et al. Semantic remote attestation: a virtual machine directed approach to trusted computing , 2004 .

[9] Jean-Pierre Seifert,et al. Remote Attestation with Domain-Based Integrity Model and Policy Analysis , 2012, IEEE Transactions on Dependable and Secure Computing.

[10] Trent Jaeger,et al. PRIMA: policy-reduced integrity measurement architecture , 2006, SACMAT '06.

[11] J. Aaron Pendergrass,et al. JMF: Java measurement framework: language-supported runtime integrity measurement , 2012, STC '12.

[12] Dimitrios Zissis,et al. Addressing cloud computing security issues , 2012, Future Gener. Comput. Syst..

[13] Trent Jaeger,et al. Design and Implementation of a TCG-based Integrity Measurement Architecture , 2004, USENIX Security Symposium.