| 可信计算平台在信任管理中的应用 |
| |
| 引用本文: | 耿秀华,;韩臻,;金砺,;彭双和.可信计算平台在信任管理中的应用[J].北方交通大学学报,2009(2):11-16. |
| |
| 作者姓名: | 耿秀华 ;韩臻 ;金砺 ;彭双和 |
| |
| 作者单位: | [1]北京交通大学计算机与信息技术学院,北京100044; [2]太原师范学院计算机系,太原030012 |
| |
| 基金项目: | 国家“863计划”项目资助(2007AA012410);国家“973”重点基础研究发展计划项目资助(2007CB307101);国家自然科学基金资助项目(60573043);北京交通大学科技基金项目资助(2008RE021) |
| |
| 摘 要: | 在基于角色的信任管理框架RT中,由于可以依赖实体的属性授权,所以它是一种适用于大规模、分布式环境,为陌生双方动态地建立信任关系的有效方法,但它在授权时只考虑了实体本身的属性,没有考虑实体所依赖的平台运行环境的可信性,而一个“不可信”的平台显然会对系统安全构成威胁,本文提出了一种搭建在可信计算平台之上的基于角色的信任管理系统RTMTCP,从证书、安全策略、一致性验证等方面具体阐述了如何将RT与可信计算平台有机地结合起来,从根本上提高信任管理系统的可信性、自主性和安全性,最后通过实例对RTMTCP的使用进行了具体说明.
|
| 关 键 词: | 信任管理 可信计算平台 证书 基于角色的信任管理框架 |
Application of Trusted Computing Platform in Trust Management |
| |
| Institution: | GENG Xiuhua, HAN Zhen, JIN Li, PENG Shuanghe (1. School of Computer and Information Technology, Beijing Jiaotong University, Beijing 100044, China; 2. Department of Computer, Taiyuan Normal University, Taiyuan 030012, China) |
| |
| Abstract: | In Role-Based Trust Management Framework (RT), entities may be authorized according to their properties, so it is an effective way to build the trust relationships dynamically for the unfamiliar in large open distributed environment. However, RT only considers the properties of entities ignoring the states of platforms on which they are operating as making authorization decision, and an "irresponsible" platform may pose threat to the system security. To address the problem, this paper presents a Role-Based Trust Management on Trusted Computing Platform, called RTMTCP. We discuss the credentials, security policy and compliance checking in RTMTCP, and illuminate the usage of RTMTCP through a typical example. |
| |
| Keywords: | trust management trusted computing platform credential RT |
| 本文献已被 维普 等数据库收录! |
|
