Visible to the public Remote Attestation of Large-scale Virtual Machines in the Cloud Data Center

TitleRemote Attestation of Large-scale Virtual Machines in the Cloud Data Center
Publication TypeConference Paper
Year of Publication2021
AuthorsCheng, Jie, Zhang, Kun, Tu, Bibo
Conference Name2021 IEEE 20th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)
Date Publishedoct
Keywordscloud computing, cloud data center, composability, Concurrent computing, Conferences, data centers, data privacy, Group Verification, Human Behavior, Hybrid Communication Framework, integrity measurement, Metrics, privacy, pubcrawl, remote attestation, resilience, Resiliency, Scalability, Virtual machining, virtualization privacy
AbstractWith the development of cloud computing, remote attestation of virtual machines has received extensive attention. However, the current schemes mainly concentrate on the single prover, and the attestation of a large-scale virtualization environment will cause TPM bottleneck and network congestion, resulting in low efficiency of attestation. This paper proposes CloudTA, an extensible remote attestation architecture. CloudTA groups all virtual machines on each cloud server and introduces an integrity measurement group (IMG) to measure virtual machines and generate trusted evidence by a group. Subsequently, the cloud server reports the physical platform and VM group's trusted evidence for group verification, reducing latency and improving efficiency. Besides, CloudTA designs a hybrid high concurrency communication framework for supporting remote attestation of large-scale virtual machines by combining active requests and periodic reports. The evaluation results suggest that CloudTA has good efficiency and scalability and can support remote attestation of ten thousand virtual machines.
DOI10.1109/TrustCom53373.2021.00041
Citation Keycheng_remote_2021