A secure initialization method for big data proving grounds based on a trusted third party

Abstract

The invention belongs to the field of cloud computing resource management, and relates to an OpenStack-based sandbox management system. The invention proposes a cloud platform security initialization method, through the addition of a trusted third party, various test sandboxes in the big data test field can be realized. The safe initialization and safe delivery of the box enables the initial control of the sandbox to be safely transferred from the platform operator to a trusted third party, and the integrity verification of the sandbox is realized. The invention has the advantages that: in the traditional cloud service providing process, a trusted third-party platform independent of the cloud service provider is added, and the security and fairness of the whole cloud service renting process are improved. By separating image creation from deployment and management clusters, and comparing the image ID filed by a trusted third party with the image ID to be registered by the cloud service provider, it is ensured that the image file is not tampered with and other functions are added; by adding initialization modules and integrity The verification module ensures the safe initialization and safe delivery of the sandbox, as well as the corresponding account management and authority management in the later stage. It is a cloud service behavior guarantee scheme that supports privacy protection.

Description

technical field [0001] The invention belongs to the field of cloud computing resource management and relates to a cloud platform security initialization method, in particular to an OpenStack-based sandbox management system. The invention aims to ensure the security initialization and safety of various experimental sandboxes related to transactions in a big data testing field Delivery, and the initial control of the sandbox is safely transferred from the platform operator to the relevant participants, and a trusted third party is especially proposed to ensure the security of the process. Background technique [0002] Since Google first proposed the concept of cloud computing in 2006, through cloud computing, computing resources and information can be allocated to users on demand. Information and resources are highly shared in cloud computing, which is considered to be the inevitable direction of next-generation computing. In recent years, cloud computing has developed rapidl...

AI Technical Summary

Problems solved by technology

Representative companies include Amazon, Tencent, Alibaba, etc. These large cloud service providers reduce IT investment and maintenance costs for enterprises by providing various cloud computing services, but the security issues of such cloud platforms has been controversial

The second problem comes from the cloud provider. The cloud provider is also worried that the cloud user's password is stolen or the user's access host is hacked, resulting in the loss of user data, and this loss is very important to the cloud provider. Difficult to detect because this loss is the result of normal user actions

[0004] According to the research conducted by the inventor of this application, the cloud servers provided by some large domestic cloud service providers all have certain security risks

Images