【摘要】 针对现有的远程证明模型中存在的终端平台基本配置细节与安全属性特征等隐私的保护问题,提出了一种具有委托模式的支持验证代理方的远程证明模型(AP2RA)及其安全协议.引入可信第3方接受验证方的委托,实施终端软硬件的完整性和安全性证明,并可信地报告平台当前状态的布尔值,改进了基于验证双方的远程证明模式,有效地保护了被验证方的平台隐私.与已有的方案相比,该方案能够抵抗被验证方消息重放攻击和共谋攻击,以及追踪对验证代理方(APP)发起攻击的终端平台,适用于可信网络中的资源分发与信息共享等环境.更多还原

【Abstract】 Since existing remote attestation models lead to an issue of privacy protection of basic configuration details and security attribute features of the terminal platform,an Attestation Proxy Party-supported Remote Attestation(abbr.AP2RA) model and its secure protocol,which have a delegation mode,are presented.The Trusted Third Party is introduced to accept an attestion delegation from the Attestor Party,implements integrity and security attestation of hardware and software on the terminal,and further trustworthily reports the boolean value of the current platform status,thus improving the remote attestation model based on two parties,as well as effectivly protecting the platform privacy of the Attested Party.Moreover,compared with other approaches,the proposed approach is capable of resisting against the message replay attack and collusion attack from the Attested Party together with the tracing terminal platform sponsoring attack on APP,so that it is suitable for resource dissemination and information sharing in the trusted network.更多还原