云环境下可信系统架构跟虚拟证书链生成研究探究.pdfVIP

Computer Science and Application 计算机科学与应用, 2018, 8(5), 738-747 Published Online May 2018 in Hans. /journal/csa /10.12677/csa.2018.85082 Research on Trusted System Architecture and Virtual Certificate Chain in Cloud Environment Guan Wang1,2, Yiqing Guo1,2, Jianzhong Chen1,2 1 Department of Computer, Beijing University of Technology, Beijing 2 Beijing Key Laboratory of Trusted Computing, Beijing nd nd th Received: May 2 , 2018; accepted: May 22 , 2018; published: May 29 , 2018 Abstract This paper proposed a trusted virtual machine system architecture based on independent Domain T, reduced the TCB size of existing systems, and increased vTPM computing performance with Xen’s Credit scheduling algorithm unchanged. On this basis, by introducing the identity key of Domain T, it generated virtual trusted certificate under TCG main specifications, and provided a trusted root for vTPM. Finally, the test results show that the system reduces TCB size of Domain 0, improves vTPM computing performance, and provides client virtual machines with the capability of certificate generation and identity authentication. Keywords Trusted Platform Module, Trusted Domain, TPM Credential, Virtual Certificate Chain 云环境下可信系统架构与虚拟证书链生成研究 1,2 1,2 1,2 王 冠 ，郭一清 ，陈建中 1北京工业大学计算机学院，北京 2可信计算北京市重点实验室，北京 收稿日期：2018年5月2 日；录用日期：2018年5月22 日；发布日期：2018年5月29 日 摘 要 本文提出了基于独立可信虚拟域(Domain Trusted, Domain T) 的可信虚拟机系统架构，降低了现有系统 文章引用: 王冠, 郭一清, 陈建中. 云环境下可信系统架构与虚拟证书链生成研究[J]. 计算机科学与应用, 2018, 8(5): 738-747. DOI: 10.12677/csa.2018.85082