RepCloud: achieving fine-grained cloud TCB attestation with reputation systems

Scalable Trusted Computing Pub Date : 2011-10-17 DOI:10.1145/2046582.2046586

Anbang Ruan, Andrew P. Martin

{"title":"RepCloud: achieving fine-grained cloud TCB attestation with reputation systems","authors":"Anbang Ruan, Andrew P. Martin","doi":"10.1145/2046582.2046586","DOIUrl":null,"url":null,"abstract":"Security concerns for emerging cloud computing models have become the focus of much research, but little of this targets the underlying infrastructure. Trusted Cloud proposals generally assert that the Trusted Computing Base (TCB) of the cloud should be clearly defined and attested to. However, specific characteristics of trust in the cloud make such solutions difficult to implement in an effective and practical way. We present RepCloud, a reputation system for managing decentralised attestation metrics in the cloud. We observe that as being deterministic and tamper-proof, trust evidence generated by the TCG framework can be efficiently transmitted within the cloud. In a web of nodes with high connectivity and mutual-attestation frequency, corrupted nodes can be identified effectively. By modelling this web with RepCloud, we achieved a fine-grained cloud TCB attestation scheme with high confidence for trust. Cloud users can determine the security properties of the exact nodes that may affect the genuine functionalities of their applications, without obtaining much internal information of the cloud. Experiments showed that besides achieved fine-grained attestation RepCloud still incurred lower trust management overhead than existing trusted cloud proposals.","PeriodicalId":401412,"journal":{"name":"Scalable Trusted Computing","volume":"30 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2011-10-17","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"23","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Scalable Trusted Computing","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/2046582.2046586","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 23

Abstract

Security concerns for emerging cloud computing models have become the focus of much research, but little of this targets the underlying infrastructure. Trusted Cloud proposals generally assert that the Trusted Computing Base (TCB) of the cloud should be clearly defined and attested to. However, specific characteristics of trust in the cloud make such solutions difficult to implement in an effective and practical way. We present RepCloud, a reputation system for managing decentralised attestation metrics in the cloud. We observe that as being deterministic and tamper-proof, trust evidence generated by the TCG framework can be efficiently transmitted within the cloud. In a web of nodes with high connectivity and mutual-attestation frequency, corrupted nodes can be identified effectively. By modelling this web with RepCloud, we achieved a fine-grained cloud TCB attestation scheme with high confidence for trust. Cloud users can determine the security properties of the exact nodes that may affect the genuine functionalities of their applications, without obtaining much internal information of the cloud. Experiments showed that besides achieved fine-grained attestation RepCloud still incurred lower trust management overhead than existing trusted cloud proposals.

查看原文本刊更多论文

RepCloud:通过信誉系统实现细粒度的云TCB认证

新兴云计算模型的安全问题已经成为许多研究的焦点，但很少有研究针对底层基础设施。可信云提案通常主张云的可信计算基础(TCB)应该被明确定义和证明。然而，云中信任的特定特征使得这种解决方案难以以有效和实用的方式实施。我们介绍了RepCloud，一个用于管理云中的分散认证指标的声誉系统。我们观察到，TCG框架生成的信任证据具有确定性和防篡改性，可以在云中有效地传输。在高连通性和相互认证频率的节点网络中，可以有效地识别出损坏的节点。通过使用RepCloud对该web进行建模，我们实现了具有高信任置信度的细粒度云TCB认证方案。云用户可以确定可能影响其应用程序真正功能的确切节点的安全属性，而无需获取云的太多内部信息。实验表明，与现有可信云方案相比，RepCloud方案在实现细粒度认证的同时，所产生的信任管理开销也较低。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Scalable Trusted Computing

自引率

0.00%

发文量