Institutional Repository
| tsd: a flexible root of trust for the cloud | |
| Chang Dexian; Chu Xiaobo; Qin Yu; Feng Dengguo | |
| 2012 | |
| Conference Name | 11th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom-2012 |
| Source | Proc. of the 11th IEEE Int. Conference on Trust, Security and Privacy in Computing and Communications, TrustCom-2012 - 11th IEEE Int. Conference on Ubiquitous Computing and Communications, IUCC-2012 |
| Pages | 119-126 |
| Conference Date | June 25, 2012 - June 27, 2012 |
| Conference Place | Liverpool, United kingdom |
| Indexed Type | EI |
| ISBN | 9780769547459 |
| Department | (1) Institute of Software Chinese Academy of Sciences Beijing China; (2) Electronic Technology Institute Information Engineering University Zhengzhou China |
| English Abstract | Due to the tight one-to-one binding relationship between the TPM and the single platform lacks of flexibility and scalability, the Trusted Platform Module (TPM) can not be directly applied to the cloud virtualization platform, on which concurrently running several user domains (VMs). For establishing the trust in the cloud, we propose the Trusted Service Domain (TSD), as a novel root of trust for the cloud. Being an independent functional domain, the TSD is able to provide the trusted service for the multiple user domains on the cloud virtualization platform. We firstly extend the existing trusted chain to secure the TSD, and generate the independent key hierarchies for the user domains in the TSD to support the cryptography service and secure storage. Then we design the secure communication mechanism to protect the inter-domain data, and present the migration scheme for the TSD in the cloud. Finally, we detailed our implementation of the prototype system and analyze the security of the TSD. Preliminary experiment results showed that the TSD has higher efficiency than the existing schemes on the trusted commands handling and the migration, which satisfied flexible deployment and rapidly migration requirements of the cloud virtualization platform. © 2012 IEEE.; Due to the tight one-to-one binding relationship between the TPM and the single platform lacks of flexibility and scalability, the Trusted Platform Module (TPM) can not be directly applied to the cloud virtualization platform, on which concurrently running several user domains (VMs). For establishing the trust in the cloud, we propose the Trusted Service Domain (TSD), as a novel root of trust for the cloud. Being an independent functional domain, the TSD is able to provide the trusted service for the multiple user domains on the cloud virtualization platform. We firstly extend the existing trusted chain to secure the TSD, and generate the independent key hierarchies for the user domains in the TSD to support the cryptography service and secure storage. Then we design the secure communication mechanism to protect the inter-domain data, and present the migration scheme for the TSD in the cloud. Finally, we detailed our implementation of the prototype system and analyze the security of the TSD. Preliminary experiment results showed that the TSD has higher efficiency than the existing schemes on the trusted commands handling and the migration, which satisfied flexible deployment and rapidly migration requirements of the cloud virtualization platform. © 2012 IEEE. |
| Keyword | Computer Privacy Digital Storage Ubiquitous Computing |
| Sponsorship | University of Bradford; IEEE Technical Committee on Scalable Computing (TCSC); IEEE; IEEE Computer Society |
| Language | 英语 |
| Content Type | 会议论文 |
| URI | http://ir.iscas.ac.cn/handle/311060/15865 |
| Collection | 中国科学院软件研究所 |
| Recommended Citation GB/T 7714 | Chang Dexian,Chu Xiaobo,Qin Yu,et al. tsd: a flexible root of trust for the cloud[C],2012:119-126. |
| Files in This Item: | There are no files associated with this item. | |||||
Items in the repository are protected by copyright, with all rights reserved, unless otherwise indicated.
Edit Comment