论文信息 - Real-time remote attestation of IaaS cloud

Real-time remote attestation of IaaS cloud

Aiming at the deficiencies when deploying existing remote attestation approaches in the IaaS cloud, this paper proposes a real-time remote attestation approach for IaaS cloud. The approach includes a realtime remote attestation architecture and corresponding dynamic measurement mechanism and reference generation mechanism. The contributions can be concluded into three aspects. Firstly, it alleviates the TOCTOU (Time of Check, Time of Use) problem. Secondly the load of verification is low, as makes it acceptable for thin clients. Thirdly the runtime behavior of the software is measured dynamically. In our prototype it is shown that the approach can detect the attacks such as code injection.

Zhen Xu | Aimin Yu | Wensi Yang

[1] Robert H. Deng,et al. Remote attestation on program execution , 2008, STC '08.

[2] Ahmad-Reza Sadeghi,et al. Property-based attestation for computing platforms: caring about properties, not mechanisms , 2004, NSPW '04.

[3] Trent Jaeger,et al. PRIMA: policy-reduced integrity measurement architecture , 2006, SACMAT '06.

[4] Eva M. Sevick-Muraca,et al. In vivo fluorescence imaging of cyanine derivative modified with epidermal growth factor EGF-Cy5.5 in a murine model of carcinogenesis , 2003, SPIE BiOS.

[5] Indrakshi Ray,et al. Proceedings of the eleventh ACM symposium on Access control models and technologies , 2006 .

[6] Ahmad-Reza Sadeghi,et al. A protocol for property-based attestation , 2006, STC '06.

[7] Ulrich Kühn,et al. Realizing property-based attestation and sealing with commonly available hard- and software , 2007, STC '07.

[8] Trent Jaeger,et al. Design and Implementation of a TCG-based Integrity Measurement Architecture , 2004, USENIX Security Symposium.

[9] Michael Franz,et al. Semantic remote attestation: a virtual machine directed approach to trusted computing , 2004 .

[10] M. Schunter,et al. Property Attestation — Scalable and Privacy-friendly Security Assessment of Peer Computers , 2004 .

[11] Tal Garfinkel,et al. Terra: a virtual machine-based platform for trusted computing , 2003, SOSP '03.