基于TPM联盟的可信云平台管理模型

以可信计算技术为基础，针对可信云平台构建过程中可信节点动态管理存在的性能瓶颈问题，提出了基于TPM联盟的可信云平台体系结构及管理模型。针对TPM自身能力的局限性，提出了宏TPM和根TPM的概念。针对可信云中节点管理时间开销大的问题，引入时间树的概念组织TPM联盟，利用TPM和认证加密技术解决数据在TPM联盟内节点间的可信传输问题，提出了一种基于时间树的TPM联盟管理策略，包括节点配置协议、注册协议、注销协议、实时监控协议、网络管理修复协议和节点更新协议，阐述了时间树的生成算法，分析了建立可信节点管理网络的时间开销和节点状态监控的有效性。最后，通过仿真实验说明了模型具有较好的性能和有效性。

Trusted cloud platform management model based on TPM alliance

On the basis of trusted computing technology, trusted cloud platform architecture and management model based on the TPM alliance was proposed to solve the performance bottleneck of dynamic management of trusted nodes in the building process of trusted cloud platform. Macro TPM was proposed to solve the capability limitation of TPM, the concept of time-based tree was introduced to organize TPM alliance, addressing the problem of high time cost of nodes management in trusted cloud. It used TPM and authentication encryption technology to solve the trusted transmission problem of data among nodes in TPM alliance, and a management strategy of time-based tree TPM alliance was proposed, including node configuration protocol, node registration protocol, node logout protocol, node state real-time monitor protocol, trusted nodes management network repair protocol, node update protocol. That explains the production algorithm of time-based tree, analyses the effectiveness of the time cost of building trusted node management network and monitoring of node state. The simulation result indicates that the model is efficient, and the time cost in trusted node management can be reduced.