Title :
Administrative Domain: Security Enhancement for Virtual TPM
Author :
Jin, Xin ; Wang, Li-na ; Yu, Rong-wei ; Kou, Peng ; Shen, Cheng-lin
Author_Institution :
Sch. of Comput., Wuhan Univ., Wuhan, China
Abstract :
Trusted computing has been introduced into virtualization as an approach of providing trust in a computing platform. However, the primitive design of privileged domain menaces virtual TPMs with oversize of trusted computing base, leading to security vulnerabilities. This paper proposes a new administrative domain (Domain A), an architecture that prevents virtual TPMs from tampers. We port the VTPM components from the privileged domain to Domain A. We begin with reviewing the Xen virtual TPM architecture and depicting the attack in Xen. Then, the Domain A-based scheme is described with the design principle and implementation of porting virtual TPM manager and TPM drivers to Domain A. Finally, its security value is analyzed with evidences to prove validation and worth of the new architecture.
Keywords :
security of data; virtual machines; virtualisation; Xen virtual TPM architecture; administrative domain; security; trusted computing; Booting; Computer architecture; Driver circuits; Kernel; Security; Virtual machine monitors; Virtual machining; Administrative domain; VTPM manager; Virtual Machine.; Virtual TPM;
Conference_Titel :
Multimedia Information Networking and Security (MINES), 2010 International Conference on
Conference_Location :
Nanjing, Jiangsu
Print_ISBN :
978-1-4244-8626-7
Electronic_ISBN :
978-0-7695-4258-4
DOI :
10.1109/MINES.2010.162
