Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method, device and medium for providing highly available computing services through certificate issuance

A technology for computing services and computing tasks, applied in the field of distributed computing and secure computing, and can solve problems such as high cost, complicated user access or switching, etc.

Active Publication Date: 2020-07-10
ADVANCED NEW TECH CO LTD
View PDF10 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

When the number of trusted computing units increases and the number is large, user access or switching will become complicated and costly

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method, device and medium for providing highly available computing services through certificate issuance
  • Method, device and medium for providing highly available computing services through certificate issuance
  • Method, device and medium for providing highly available computing services through certificate issuance

Examples

Experimental program
Comparison scheme
Effect test

Embodiment approach

[0191] According to one embodiment, the device 90 further includes a key negotiation module configured to perform key negotiation with the trusted certificate generator to establish a trusted channel before sending the first authentication request to the trusted certificate generator, The trusted channel is used to send the first certificate request and receive the first certificate report.

[0192] According to another embodiment, an apparatus for distributing certificates for trusted computing units is provided, which is deployed in a trusted certificate generator. The trusted certificate generator can be implemented by any device, platform or device cluster with computing and processing capabilities. Figure 10 A schematic block diagram showing an apparatus for distributing certificates for trusted computing units in one embodiment. like Figure 10 As shown, the device 100 includes:

[0193] The first request receiving module 101 is configured to receive a first certific...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

Embodiments of the description provide a method and apparatus for providing a high-availability service by issuing a certificate. According to the solution, a trusted certificate generator distinguishes different computing tasks by means of code hash, a set of certificate chain and a private key are generated for one code hash, wherein the certificate chain comprises a public key certificate and a corresponding root certificate, and the public key certificate is matched with the private key to form a certificate pair. Then, the trusted certificate generator distributes the certificate pair to trusted computing units which are authenticated and run the computing task corresponding to the code hash. On the other hand, the trusted certificate generator distributes the root certificate in the certificate chain to a user terminal requesting the computing task. Thus, the user terminal having the root certificate can communicate securely with the trusted computing units having the corresponding certificate pair by means of a TLS protocol.

Description

technical field [0001] One or more embodiments of this specification relate to the field of distributed computing and secure computing, and in particular to a method and an apparatus for providing highly available computing services in a distributed system. Background technique [0002] For the security of computing and data transmission, trusted computing units in Trusted Execution Environment (TEE) are often used for trusted computing and data processing, in which trusted computing units can ensure that the code execution is safe, and the outside world includes Neither the operating system nor the driver can obtain secrets such as internal runtime memory. For example, trusted computing units can be used to run applications and perform computing tasks, so as to ensure safe execution of program codes and isolation from the outside world. [0003] Due to the security needs of the trusted execution environment, before the user terminal and the trusted computing unit exchange ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/08H04L9/32
CPCH04L9/0825H04L9/3265H04L9/3268
Inventor 余超凡王磊周爱辉张宁田洪亮肖俊贤
Owner ADVANCED NEW TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products