On the Construction of Trusted Resource Pool in Clouds

IaaS cloud converts physical resources into resource pools. The pool oriented resource management model requires transparency of the underlying physical resources, as well as the on-demand consumption of IT services and the trust verification of the resources from cloud users. A viable way is by creating trusted clusters that consist of trusted physical machines, with strict membership management of these trusted clusters, confining IT services to be hosted within trusted clusters. This paper proposes a trusted cluster scheme which is based on a dynamic group signature scheme. The scheme fits into the pool oriented trust management for cloud computing.

[1]  Jan Camenisch,et al.  A Group Signature Scheme with Improved Efficiency , 1998, ASIACRYPT.

[2]  David Chaum,et al.  Group Signatures , 1991, EUROCRYPT.

[3]  Stefan Berger,et al.  vTPM: Virtualizing the Trusted Platform Module , 2006, USENIX Security Symposium.

[4]  Jan Camenisch,et al.  Efficient and Generalized Group Signatures , 1997, EUROCRYPT.

[5]  Lidong Chen,et al.  New Group Signature Schemes (Extended Abstract) , 1994, EUROCRYPT.

[6]  Hovav Shacham,et al.  Short Group Signatures , 2004, CRYPTO.

[7]  Ramya Jayaram Masti On the security of virtual machine migration and related topics , 2010 .

[8]  Xiaoyuan Yang,et al.  Dynamic Group Signature with Forward Security and Its Application , 2007, Sixth International Conference on Grid and Cooperative Computing (GCC 2007).

[9]  Ghassan O. Karame,et al.  Enabling secure VM-vTPM migration in private clouds , 2011, ACSAC '11.

[10]  P. Mell,et al.  The NIST Definition of Cloud Computing , 2011 .