Journal of Beijing University of Posts and Telecommunications

  • EI核心期刊

JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM ›› 2014, Vol. 37 ›› Issue (5): 85-90.doi: 10.13190/j.jbupt.2014.05.018

• Reports • Previous Articles     Next Articles

Research on eID-Based Virtual Machine Trusted Attestation System in IaaS Cloud

WU Xu1,2, XU Jin1,2, LI Chun-wen3, LIU Chuan-yi1,2   

  1. 1. School of Computer Science, Beijing University of Posts and Telecommunications, Beijing 100876, China;
    2. Key Laboratory of Trustworthy Distributed Computing and Service (BUPT), Ministry of Education, Beijing 100876, China;
    3. Software Development Center, Head Office of the Agricultural Bank of China, Beijing 100073, China
  • Received:2013-10-17 Online:2014-10-28 Published:2014-11-07

Abstract:

In cloud computing, the data and computation migration gives rise to trust problems between the user and the cloud. Including the hardware platform, the multiple dimensions method was studied, as well as the user identity and behavior. The electronic identity (eID)-based virtual machine trusted attestation system in infrastructure-as-a-service (IaaS) cloud was designed. The hardware platform was used for trust third party architecture. The citizen's network eID was used as users unique authoritative identity. The credit records were also applied to evaluate the user's behaviors. Four steps were adopted to solve the trust problem between two sides, including trusted attestation of the user identification and trusted attestation of the virtual machine. Experiment analysis shows that this system can defend common attacks, it is more safety, and the time complexity is within acceptable limitations.

Key words: trust computing, cloud computing, infrastructure as a service, electronic identity, remote attestation

CLC Number: