Trustworthy measurement system and method for cloud host

A cloud host, trustworthy technology, applied in the field of information security, can solve the problems of destroying the integrity of the trust chain, not having portability, not having wide applicability, etc. good effect

Active Publication Date: 2021-08-17
DATANG GAOHONG XINAN ZHEJIANG INFORMATION TECH CO LTD
View PDF5 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] The above-mentioned disclosed technical solution completely relies on the trusted platform module to measure the integrity of the physical machine and virtual machine of the cloud host. When the virtual machine needs to be migrated and other operations, the integrity of the trust chain will be destroyed, and the integrity of the virtual machine cannot be guaranteed. Trustworthy, not portable, not widely applicable in cloud computing platforms

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Trustworthy measurement system and method for cloud host
  • Trustworthy measurement system and method for cloud host
  • Trustworthy measurement system and method for cloud host

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0026] The present invention will be described in further detail below in conjunction with the accompanying drawings and embodiments.

[0027] Such as figure 1 As shown, the cloud host includes a physical machine and a virtual machine, the physical machine is configured with a trusted platform module (TPM: Trusted Platform Module), the trusted platform module is provided with a PCR (platform configuration register) register, and the trusted platform module has the ability to generate and manage Key, encryption and decryption processing, saving measurement value and other functions. During the boot process of the physical machine, the trusted platform module measures each component of the physical machine to verify the integrity of the physical machine. The trusted startup process is: during the startup process of the physical machine, the metric value calculation is performed on the code or data to be executed, the calculated metric value is hashed, and the generated hash val...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The present invention provides a trusted measurement system and method for a cloud host. A virtual trusted platform module is configured in a virtual environment, the trusted platform module is used to measure the physical environment, and the virtual environment is trusted by the virtual trusted platform module. Trust measurement, constructing a complete trusted chain from physical machine to virtual machine, which can realize the trusted integrity verification of the physical environment and virtual environment of the cloud host; the built trusted chain does not depend on the trusted physical machine The platform module, therefore, when the virtual machine migrates, first divide the space for saving the metric value of the virtual machine in the virtual PCR register of the destination host computer, and then copy each metric value of the physical machine of the destination host computer to the virtual PCR The corresponding bit of the register, when the virtual machine starts, measure the virtual machine again, and save the measured value in the corresponding bit of the virtual PCR register, that is, the trusted chain reconstruction of the virtual machine after migration is completed, and the portability is excellent. It is suitable for being widely used in cloud computing platforms.

Description

technical field [0001] The invention relates to a trusted measurement system and method of a cloud host, belonging to the technical field of information security. Background technique [0002] At present, the cloud computing platform has become the main basic computing platform, and the cloud host includes the physical environment built by physical machines and the virtual environment built by virtual machines. In order to ensure the credibility of the cloud computing platform, it is necessary to ensure the credibility of both the physical environment and the virtual environment. In this way, the integrity measurement of the cloud computing platform includes both the credibility measurement of the physical environment and the credibility measurement of the virtual environment. . The Chinese invention patent application with the application number 201510513472.1 discloses a method for constructing a virtualized trusted server trust chain, which uses the trusted platform modu...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): G06F21/57G06F9/455
Inventor 郑驰梁思谦
Owner DATANG GAOHONG XINAN ZHEJIANG INFORMATION TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap