The design of static integrity of trusted cloud computing architecture from five stages ensures the measure in-tegrity of static trust chain of cloud computing resources.On this basis,it proposes the dynamic trust chain based on pro-tecting the integrity of the program code,which is an important guarantee for the current program code integrity measure-ment.The safety measure of credible chain using non-interference model measuring dynamic execution process has achieved the mandatory access controls to protect the integrity of dynamic architecture.%传统云计算平台,需要根据虚拟机在载入云计算资源前进行安全性检测,则存在程序动态加载时被恶意篡改的可能。从五个阶段对可信云计算完整性静态架构进行设计,保证了云计算资源静态信任链的度量完整性。在此基础上,提出了基于程序代码完整性保障的动态信任链,基于动态信任链是目前对程序代码完整性度量的重要保障,利用无干扰模型对可信云计算代码动态执行过程中的进程进行可信链的安全性度量,实现了强制访问控制动态完整性保护架构设计。通过利用模型检测的方法对提出的架构进行了检测,得到了较为完整的信任链,保证了云计算环境下客户机的高分离性和对资源的高可控性。实验结果验证了架构的正确。
展开▼
