Dynamic trustworthiness verification mechanism for trusted cloud execution environment

Chuan Yi Liu; Jie Lin; Bo Tang

doi:10.13328/j.cnki.jos.004447

Dynamic trustworthiness verification mechanism for trusted cloud execution environment

Chuan Yi Liu^*
, Jie Lin
, Bo Tang

^*Corresponding author for this work

Beijing University of Posts and Telecommunications
Ministry of Education of the People's Republic of China
Postal Savings Bank of China

Research output: Contribution to journal › Article › peer-review

6 Scopus citations

Abstract

Providing a provable and verifiable execution environment for the tenants is a very important problem in the cloud computing mode. This paper proposes a dynamic trustworthiness verification mechanism for the tenants' virtual execution environment, named TCEE (trusted cloud execution environment), which extends the current trusted chain into virtual machine's architecture stack. It cyclically verifies the trustworthiness of the memory and file systems within the virtual execution environments. TCEE introduces a TTP (trusted third party) to perform the verification and audit action against tenants' virtual machines to avoid heavy involvement of end tenants and unnecessary information leakage of the cloud providers. A prove-of-concept prototype is implemented according to TCEE to evaluate the effectiveness and the performance overhead incurred. Experimental results show that TCEE is effective and its performance overhead is minor.

Original language	English
Pages (from-to)	662-674
Number of pages	13
Journal	Ruan Jian Xue Bao/Journal of Software
Volume	25
Issue number	3
DOIs	https://doi.org/10.13328/j.cnki.jos.004447
State	Published - Mar 2014
Externally published	Yes

Keywords

Cloud computing
Trusted computing
Trusted platform module
Trustworthiness verification

Access to Document

10.13328/j.cnki.jos.004447

Cite this

@article{e0f1eb9b351f4f77b5c624ccd1d08e0b,

title = "Dynamic trustworthiness verification mechanism for trusted cloud execution environment",

abstract = "Providing a provable and verifiable execution environment for the tenants is a very important problem in the cloud computing mode. This paper proposes a dynamic trustworthiness verification mechanism for the tenants' virtual execution environment, named TCEE (trusted cloud execution environment), which extends the current trusted chain into virtual machine's architecture stack. It cyclically verifies the trustworthiness of the memory and file systems within the virtual execution environments. TCEE introduces a TTP (trusted third party) to perform the verification and audit action against tenants' virtual machines to avoid heavy involvement of end tenants and unnecessary information leakage of the cloud providers. A prove-of-concept prototype is implemented according to TCEE to evaluate the effectiveness and the performance overhead incurred. Experimental results show that TCEE is effective and its performance overhead is minor.",

keywords = "Cloud computing, Trusted computing, Trusted platform module, Trustworthiness verification",

author = "Liu, \{Chuan Yi\} and Jie Lin and Bo Tang",

year = "2014",

month = mar,

doi = "10.13328/j.cnki.jos.004447",

language = "英语",

volume = "25",

pages = "662--674",

journal = "Ruan Jian Xue Bao/Journal of Software",

issn = "1000-9825",

publisher = "Chinese Academy of Sciences",

number = "3",

}

TY - JOUR

T1 - Dynamic trustworthiness verification mechanism for trusted cloud execution environment

AU - Liu, Chuan Yi

AU - Lin, Jie

AU - Tang, Bo

PY - 2014/3

Y1 - 2014/3

N2 - Providing a provable and verifiable execution environment for the tenants is a very important problem in the cloud computing mode. This paper proposes a dynamic trustworthiness verification mechanism for the tenants' virtual execution environment, named TCEE (trusted cloud execution environment), which extends the current trusted chain into virtual machine's architecture stack. It cyclically verifies the trustworthiness of the memory and file systems within the virtual execution environments. TCEE introduces a TTP (trusted third party) to perform the verification and audit action against tenants' virtual machines to avoid heavy involvement of end tenants and unnecessary information leakage of the cloud providers. A prove-of-concept prototype is implemented according to TCEE to evaluate the effectiveness and the performance overhead incurred. Experimental results show that TCEE is effective and its performance overhead is minor.

AB - Providing a provable and verifiable execution environment for the tenants is a very important problem in the cloud computing mode. This paper proposes a dynamic trustworthiness verification mechanism for the tenants' virtual execution environment, named TCEE (trusted cloud execution environment), which extends the current trusted chain into virtual machine's architecture stack. It cyclically verifies the trustworthiness of the memory and file systems within the virtual execution environments. TCEE introduces a TTP (trusted third party) to perform the verification and audit action against tenants' virtual machines to avoid heavy involvement of end tenants and unnecessary information leakage of the cloud providers. A prove-of-concept prototype is implemented according to TCEE to evaluate the effectiveness and the performance overhead incurred. Experimental results show that TCEE is effective and its performance overhead is minor.

KW - Cloud computing

KW - Trusted computing

KW - Trusted platform module

KW - Trustworthiness verification

UR - https://www.scopus.com/pages/publications/84897891297

U2 - 10.13328/j.cnki.jos.004447

DO - 10.13328/j.cnki.jos.004447

M3 - 文章

AN - SCOPUS:84897891297

SN - 1000-9825

VL - 25

SP - 662

EP - 674

JO - Ruan Jian Xue Bao/Journal of Software

JF - Ruan Jian Xue Bao/Journal of Software

IS - 3

ER -

Dynamic trustworthiness verification mechanism for trusted cloud execution environment

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this