Research on Remote Trust Authentication in the Virtual Computing Platform

doi:10.3969/j.issn.1671-1122.2014.10.014

Netinfo Security ›› 2014, Vol. 14 ›› Issue (10): 77-80.doi: 10.3969/j.issn.1671-1122.2014.10.014

Previous Articles Next Articles

Research on Remote Trust Authentication in the Virtual Computing Platform

ZHENG Zhi-rong, LIU Yi

Computer Technology Institute of Navy, Beijing l00841, China

Received:2014-06-26 Online:2014-10-01 Published:2015-08-17

Abstract

Abstract:

In the traditional computing platform, the trust chain is constructed in the way of trusted platform module, trusted BIOS, OS Loader, OS kernel. In the virtual computing platform, the trust chain is constructed in the way of trusted platform module, trusted BIOS, virtual machine monitor, manage virtual machine, user virtual machine OS Loader, user virtual machine OS kernel. The security requirement of the remote trust authentication in the virtual computing platform is analyzed. The authentication way of the virtual computing platform and the virtual machine management is put forward in order to prevent malicious virtual machine management to modify the virtual machine’s integrity proven. In the process of virtual machine authentication, remote challenger authenticate virtual machine or virtual platform. The combination of the physical PCRs and virtual PCRs way is put forward to prevent middleman attack.

Key words: virtual computing platform, integrity measurement, trust authentication

CLC Number:

TP309

ZHENG Zhi-rong, LIU Yi. Research on Remote Trust Authentication in the Virtual Computing Platform[J]. Netinfo Security, 2014, 14(10): 77-80.

References 9

[1]	Mell P.Grance T.The NIST definition of cloud computing[J].National Institute of Standards and technology, 2009, 53(6):50.
[2]	Vene T,Velte A,Elsenpeter R.CIoud computing,a practial approach[M]. NewYork: McGraw-Hill, Inc. ,2009.
[3]	Luo Sen-lin.Information System Security and Countermeasures[M].Beijing:Beijing Institue of Technology Press,2005.
[4]	王伟,高能,江丽娜,云计算安全需求分析研究[J].信息网络安全,2012,10(8):75-78.
[5]	冯登国,张敏,张妍,等.云计算安全研究[J].软件学报,2011,22(1):71—83.
[6]	ENGLAND P, LAMPSON B, MANFERDELL J,et al.A Trusted open platform[J]. IEEE Computer, 2003, 36(7): 55-62.
[7]	Hao Z, Zhong S, Yu N.A privacy-preserving remote data integrity checking protocol with data dynamics and public verifiability[J]. Knowledge and Data Engineering, IEEE transactions on 2011, 23(9): 1432-1437.
[8]	刘鹏. 云计算[M]. 北京:电子工业出版社, 2013.
[9]	TCG. TCG Specification Architecture Overview[EB/OL]. https://www.trustedcomputing group.org/downloads/specifications/TCG_1_0 Architecture_Overview. pdf,2013-10-10.

Research on Remote Trust Authentication in the Virtual Computing Platform

RichHTML

PDF (PC)

Knowledge

Abstract

Cite this article

share this article

References 9

Related Articles 3

Recommended Articles

Metrics

Comments

[1]	QIN Zhongyuan, GE Zhenwei, PAN Jingwei, CHEN Liquan. Research on Integrity Measurement Scheme Based on Virtual Trusted Platform Module [J]. Netinfo Security, 2023, 23(2): 11-18.
[2]	Yong YU, Changgeng CHEN, Qiang LIU, Jiaxi LIU. Trust Chain Model and Trust Relation Analysis of Component-based Software System [J]. Netinfo Security, 2018, 18(3): 8-13.
[3]	Bin XING, Jiqiang LIU, Zhen HAN. A New Model for Measuring the Integrity of Trusted Computing Platforms [J]. Netinfo Security, 2016, 16(6): 8-14.