T-YUN: Trustworthiness Verification and Audit on the Cloud Providers

Chuanyi LIU  Jie LIN  Binxing FANG  

Publication
IEICE TRANSACTIONS on Information and Systems   Vol.E96-D   No.11   pp.2344-2353
Publication Date: 2013/11/01
Online ISSN: 1745-1361
DOI: 10.1587/transinf.E96.D.2344
Print ISSN: 0916-8532
Type of Manuscript: PAPER
Category: Computer System
Keyword: 
cloud computing,  trustworthiness,  audit,  attestation,  trusted computing,  

Full Text: PDF>>
Buy this Article




Summary: 
Cloud computing is broadly recognized as as the prevalent trend in IT. However, in cloud computing mode, customers lose the direct control of their data and applications hosted by the cloud providers, which leads to the trustworthiness issue of the cloud providers, hindering the widespread use of cloud computing. This paper proposes a trustworthiness verification and audit mechanism on cloud providers called T-YUN. It introduces a trusted third party to cyclically attest the remote clouds, which are instrumented with the trusted chain covering the whole architecture stack. According to the main operations of the clouds, remote verification protocols are also proposed in T-YUN, with a dedicated key management scheme. This paper also implements a proof-of-concept emulator to validate the effectiveness and performance overhead of T-YUN. The experimental results show that T-YUN is effective and the extra overhead incurred by it is acceptable.