원문정보
초록
영어
In the field of cloud security, the cloud provider don’t disclose any internal configuration information to protect itself, so the client know nothing about their data stored in the cloud and security status of the node providing services for them, thereby it causes the client’s worry whether to adopt cloud computing services. So that the trust between client and cloud computing provider become one of the biggest obstacles hindering the development of the cloud computing. Based on Direct Anonymous Attestation (DAA) and Dynamic Property Trusted Attestation (DPTA), we propose a client oriented remote attestation (CORA) model in cloud environment, client can select a node in the cloud at corresponding security level according to their own needs and can dynamically verify the node’s security status. At the same time, because the use of anonymous method it will not expose classified information of the node, such as configuration and location information etc. Furthermore we add service life of certificates to update certificates regularly, which enhanced the security of the attestation.
목차
1. Introduction
2. Related Works
3. The Overall Structure of CORA Model
4. The Protocol of CORA Model
4.1 Issuing DAA Certificate and SLA Certificate Protocol
4.2 SLA Signing Protocol
4.3 The Verification Protocol
4.4 Registration Protocol
4.5 Request and Verification Protocol for Client
5. The Whole Process of CORA Model
6. Performance and Security Analysis
6.1 Performance Analysis
6.2 Security Analysis
7. Conclusion
Acknowledgements
References