The hosting service model of cloud computing leads to cloud service users lost direct control of their applications and data. Users worry about whether the applications and data deployed in the cloud would be tam-pered with or stolen, while cloud service providers are equally worry about whether the user’s applications would damage cloud, or leverage cloud to do malicious business, this is the user-cloud bilateral trust issue. The issue leads to some organizations need higher security (banks, gov-ernment, etc.) or large enterprises to abandon the use of public cloud services, this will seriously hinder the popularity of cloud computing and restrict the development of cloud computing.Based on trusted computing and trusted remote attestation technol-ogy research, this paper used the solution of TTP, designed a complete trusted remote attestation system to cloud which include three role of us-ers, TTP, and cloud. Trusted third-party attestation proxy can ensure the authentic of verification results, while minimizing cloud configuration information leakage, to guarantee the privacy of the cloud service provid-er. Through the modify and integrity of TCG-based open-source compo-nents, with the study of TCG’s PTS specification, this paper designed and implemented the the trust attestation system for virtual machine in IaaS cloud, which is the core part of trusted cloud system, then gave a protocol to illustrate that how users use TTP to attest their virtual machines. Final-ly, this paper analyzed the extra costs bring by trusted attestation system by comparing the experiment result. The result shows that the cost that trusted system introduced is within an acceptable range. |