An Improved Protocol for Property-Based Attestation

As an important part of Trusted Computing, remote attestation is an effective mechanism to convince trust among computing platforms in open network environment. Existing property-based attestation has a lot of shortcoming. Aiming at the problems of low signing efficiency, high complexity of platform configuration validation and platform identity leakage in property-based attestation PBA protocol, a improved PBA scheme is proposed in this paper. A message group CL-LRSW signature scheme is proposed based on bilinear map to promote the efficiency in the original scheme with the feature of short signature size, high compute efficiency and high secure level. In signing process, Schnorr's signature scheme is adopted to overcome the defect of zero knowledge signature algorithms. Moreover the AIK algorithm is replaced with DAA algorithm so the combination of PBA and DAA will meet their optimum. In this case the anonymity and privacy of platform identity is assured at the same time. The PBA scheme proposed both adopt the bilinear map which can be realized effectively based on chinese trusted cryptography module(TCM). The practical application of TCM is promoted on some extent by our schemes.