在云计算环境中为确保安全,用户和服务提供者之间需要相互的认证。鉴于云计算平台的特性,提出基于组件属性和系统行为证明模型(CPTBA)。在该模型中,用户对服务商提供的组件进行认证时采用改进的可信计算中基于组件属性的远程证明。在数据管理过程中,系统行为的认证采用改进的基于系统行为的可信证明,服务提供商对用户身份进行认证采用 AIK 证书认证。%In cloud computing environment,in order to ensure the security,it requires mutual authentication between the users and the service providers.In this paper,in view of the characteristics of cloud computing platforms,an attestation model based on component properties and system behaviour (CPTBA)is put forward.In the model,an improved remote attestation based on component properties in trusted computing is used in users’authentication on the components provided by the service provider.In data management process,the im-proved credible attestation based on system behaviour is used in authentication of system behaviour,and the AIK certificate authentication is used in authentication of user’s identity by the services provider.
展开▼
