论文信息 - OOAP: A Novel Authorization Protocol for Access to Sensitive Data in Trusted Cloud Computing Platforms

OOAP: A Novel Authorization Protocol for Access to Sensitive Data in Trusted Cloud Computing Platforms

Cloud computing platforms are usually constructed as trusted virtual platforms based on trusted computing technologies. This is one of the most effective approaches to resolve cloud computing security problems. However, the protection of sensitive data in trusted virtual platforms is an important problem needed to be resolved. In this paper, we proposed a novel authorization protocol. The protocol assembled the functions of OIAP, OSAP and AACP protocols, and prevented all known attacks in existing authorization protocols. Moreover, it satisfied the property of exclusivity and was compatible with TCG TPM command formats. The protocol effectively protects the sensitive data from unauthorized accesses in trusted cloud computing platforms.

Xiaoyun Wu | Yuping Hu | Dongjun Luo | Xinwei Zheng

[1] Krishna P. Gummadi,et al. Towards Trusted Cloud Computing , 2009, HotCloud.

[2] Yong Zhao,et al. Cloud Computing and Grid Computing 360-Degree Compared , 2008, GCE 2008.

[3] Zhang Xing,et al. A New Authorization Protocol for Trusted Computing , 2007, The First International Symposium on Data, Privacy, and E-Commerce (ISDPE 2007).

[4] Pla Information,et al. Security Analysis and Improvement of the TPM's Two Main Authorization Protocols , 2008 .

[5] Fang Yong. Analysis and improvement of trusted computing authorization protocol , 2012 .

[6] Stefan Berger,et al. vTPM: Virtualizing the Trusted Platform Module , 2006, USENIX Security Symposium.