检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
作 者:纪祥敏[1,2] 赵波[1] 陈璐[3] 向騻[1]
机构地区:[1]武汉大学计算机学院,湖北武汉430072 [2]福建农林大学计算机与信息学院,福建福州350002 [3]海军工程大学信息安全系,湖北武汉430033
出 处:《华中科技大学学报(自然科学版)》2016年第3期105-109,共5页Journal of Huazhong University of Science and Technology(Natural Science Edition)
基 金:国家重点基础研究发展计划资助项目(2014CB340600);国家高技术研究发展计划资助项目(2015AA016002);国家自然科学基金资助项目(61332019;61173138;61272452);信息保障技术重点实验室开放基金资助项目(KJ-13-106)
摘 要:针对单点信任传递技术无法应对云环境多节点动态信任问题,提出云环境并行信任传递机制.该机制根据可信计算技术思路,结合云计算工作模式与新特点,将信任划分为静态信任和动态信任,分别给出静态信任根和动态信任根定义,将二者整合形成云执行环境的可信基,静态度量与动态度量有机结合,并行传递信任,将信任从可信基逐级扩展到用户应用资源.经过信任规则谓词逻辑形式化推理,证明了该机制信任扩展正确、有效.测试结果表明:上述机制可达到系统完整性保护目的,系统性能开销在可接受范围之内,不影响用户正常使用.To solve the problem that single-node trust transfer technique could not be suitable for dynamic multi-nodes trust,parallel trust transfer mechanism was proposed in cloud environment.On the basis of new operating modes and features of cloud computing,the trust was divided into static trust and dynamic trust in terms of the idea of trusted computing technology.Meanwhile,the definitions of static trust root and dynamic trust root were respectively given to be integrated into the trust base for cloud execution environment.Combined with static measurement and dynamic measurement,trust was transferred from the trust base to applications in parallel.Predicate logic formal reasoning proves that the trust can be extended properly and effectively.Experimental results illustrate that the system integrity protection is achieved,and the performance overhead is restricted within an acceptable range,without affecting daily application.
关 键 词:云计算 可信计算 可信基 动态信任 动态度量 谓词逻辑
分 类 号:TP391.41[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.120
