Building Trusted Sub-domain for the Grid with Trusted Computing

Authors:
Jing Zhan;Huanguo Zhang;Fei Yan
Affiliations:
School of Computer Science, Wuhan University, Wuhan, China 430079;State Key Lab of Software Engineering, (Wuhan University), Wuhan, China 430072;School of Computer Science, Wuhan University, Wuhan, China 430079
Venue:
Information Security and Cryptology
Year:
2007

Citing 11
Cited 1

Building the IBM 4758 Secure Coprocessor

Computer
Outbound Authentication for Programmable Secure Coprocessors

ESORICS '02 Proceedings of the 7th European Symposium on Research in Computer Security
An Online Credential Repository for the Grid: MyProxy

HPDC '01 Proceedings of the 10th IEEE International Symposium on High Performance Distributed Computing
Xen and the art of virtualization

SOSP '03 Proceedings of the nineteenth ACM symposium on Operating systems principles
Terra: a virtual machine-based platform for trusted computing

SOSP '03 Proceedings of the nineteenth ACM symposium on Operating systems principles
Attestation-based policy enforcement for remote access

Proceedings of the 11th ACM conference on Computer and communications security
Trusted Computing Platforms: Design and Applications

Trusted Computing Platforms: Design and Applications
The Anatomy of the Grid: Enabling Scalable Virtual Organizations

International Journal of High Performance Computing Applications
A hardware-secured credential repository for Grid PKIs

CCGRID '04 Proceedings of the 2004 IEEE International Symposium on Cluster Computing and the Grid
Countering security threats in service-oriented on-demand grid computing using sandboxing and trusted computing techniques

Journal of Parallel and Distributed Computing - Special issue: Security in grid and distributed systems
Design and implementation of a TCG-based integrity measurement architecture

SSYM'04 Proceedings of the 13th conference on USENIX Security Symposium - Volume 13

Managing application whitelists in trusted distributed systems

Future Generation Computer Systems

Quantified Score

Hi-index	0.00

Visualization

Abstract

The Grid is all about collaboration, which is supported by dynamic, multi-institutional virtual organizations (VO). The fact that Grid users and resource providers often suffer from attacks outside or inside the VO make it necessary to build a trusted sub-domain. The TCG (Trusted Computing Group) proposes Trusted Computing (TC) to enhance users' trust on today's open architecture platforms by adding a tamper-resistant hardware module called Trusted Platform Module (TPM) to the end system. In this paper, we propose and design an open-source security system based on Linux and TPM hardware to extend the trust on the platform to the Grid environment, and hereby provide sharing of trusted environment. Especially, we demonstrate how to build a trusted sub-domain for the Grid with our system by using trusted attestation and migration based on the TC.