开放环境下的远程证明体系架构设计

DESIGNING REMOTE ATTESTATION ARCHITECTURE IN OPEN ENVIRONMENTS

下载PDF

导出

摘要虚拟化技术和证明技术相互依赖,只有两者相互结合,才能为安全系统奠定坚实的基础。首先给出在开放环境下使用证明技术建立信任关系需要解决的问题,然后提出一种支持远程证明的安全体系架构Sec_TV,讨论该架构如何结合虚拟化和证明技术来增强系统的安全性,并给出Sec_TV下远程证明协议设计,最后,从Sec_TV体系架构本身及Sec_TV远程证明协议两个方面讨论这个远程证明体系架构的安全性。 The virtualisation and proven technologies are the interdependent techniques; only by combining these two can lay sound foundation for security system. First, in the paper we suggest the problems to be resolved during establishing trust relationship in open distributed environments with proven technology. Secondly, we present a secure architecture See TV which supports the remote attestation, and discuss this architecture in terms of combinJng the virlualJsation and proven technologies to enhance the security of the system, and then we provide the design of remote attestation protocol on Sec_TV. Finally, we discuss the security of the remote attestation architecture from two aspects of both Sec_TV architecture itself and Sec_TV remote attestation protocol.

作者于颖超刘了陈左宁

机构地区江南计算技术研究所

出处《计算机应用与软件》 CSCD 北大核心 2012年第8期86-89,105,共5页 Computer Applications and Software

基金国家重点基础研究发展计划(2007CB310907)

关键词可信计算虚拟化远程证明 TCM vTCM Trusted computing Virtualisation Remote attestation TCM vTCM

分类号 TP309 [自动化与计算机技术—计算机系统结构]

引文网络
相关文献

参考文献11

1http ://www. trustedcomputing, com/.
2Stumpf F,Tafreschi O, Roder P,et al. A Robust Integrity Reporting Pro- tocol for Remote Attestation [ C]//Second Workshop on Advances in Trusted Computing (WATC'06 Fall),Tokyo,Japan,November 2006.
3Sailer R, Zhang Xiaolan, Jaeger T, et al. Design and Implementation of a TCG-Based Integrity measurement architecture [ R ]. IBM Research Report.
4Jaeger T, Sailer R, Shankar U. PRIMA : Policy-Reduced Integrity Meas- urement Architecture [ C ]//SACMAT '06 : Proceedings of the eleventh ACM symposium on Access control models and technologies, New York, NY, USA ,2006 : 19 - 28.
5Chen Liqun, Landfermann R, Rohe M, et al. A protocol for property- based attestation [ C ]//STC' 06 :Proceedings of the first ACM workshop on Scable trusted computing,2006:7-16.
6Haldar V, Chandra D, Franz M. Semantic Remote Attestation:A Virtual Machine Directed Approach to Trusted Computing[ C ]//USENIX Vir- tual Machine Research and Technology Symposium,2004.
7Madnick S E, Donovan J J. Application and Analysis of the Virtual Ma- chine Approach to Information System Security and Isolation [ C ]//Pro- ceedings of the Workshop on Virtual Computer Systems, New York, NY. USA. 1973:210 - 224.
8Garnkel T, Pfa B, Chow J, et al. Terra : A Virtual Machine-Based Plat- form for Trusted Computing [ C ]//SOSP'03 : Proceedings of the nine- teenth ACM symposium on Operating Systems Principles, New York, NY, USA ,2003 : 193 - 206.
9Jansen B, Ramasamy H, Schunter M. Flexible Integrity Protection and Vefication Architecture for Virtual Machine Monitors [ C ]//Second Workshop on Advances in Trusted Computing, 2006.
10于颖超,刘了.一种结合可信计算和虚拟化技术的安全平台架构设计[J].高性能计算技术,2011(4).

1但姝婷.数据挖掘在客户关系管理中的应用[J].软件导刊,2012,11(1):162-164. 被引量：1
2何龙,彭新光.基于双线性对签密的安全高效远程证明协议[J].计算机应用,2013,33(10):2854-2857. 被引量：2
3施光源,公备,冯聿梦.一种远程证明协议转换模型及通用安全协议研究[J].计算机应用研究,2010,27(6):2309-2312.
4周洁,郝平,卿昱,何恩.一个基于身份的可信平台远程证明方案[J].中国电子科学研究院学报,2010,5(3):286-290. 被引量：1
5彭新光,王晓阳.基于模块属性的远程证明协议[J].计算机工程与设计,2013,34(2):469-473. 被引量：4
6应用心得[J].大众软件,2008(1):66-66.
7王勇,方娟,任兴田,林莉.基于进程代数的TCG远程证明协议的形式化验证[J].计算机研究与发展,2013,50(2):325-331. 被引量：5
8秦嫚蔓,王峥,王莉.基于SPIN的远程证明协议的形式化分析及改进[J].计算机工程与应用,2017,53(1):34-38. 被引量：4
9冯伟,冯登国.基于串空间的可信计算协议分析[J].计算机学报,2015,38(4):701-716. 被引量：12
10李晓策,潘晓中,麦涛涛.基于多组件签名的远程证明协议[J].计算机应用研究,2017,34(3):888-891. 被引量：1

计算机应用与软件

2012年第8期

浏览历史

内容加载中请稍等...

开放环境下的远程证明体系架构设计

参考文献11

相关作者

相关机构

相关主题

浏览历史