Filter-Based Trusted Remote Attestation for Web Services

Remote attestation of the trusted platforms is one of the most important aspect of trusted computing specification. The approach of attesting program from higher semantic level has been proved more trustworthy than traditional static approaches. Semantic remote attestation based on virtual machine is a kind of representative measures of trusted attestation, but there are some shortcomings in attestation efficiency and given applications. A new method of trusted remote attestation for web service is proposed based on filter mechanism, which combines property-based attestation with trusted virtual machine. We construct trusted attestation environment by the open-source TPM Emulator and IAIK jTSS on Linux, and Tomcat as Web server. The prototype of remote attestation for web service based on filter was validated by establishing attestation trusted table. The results show that the remote attestation policy of filter mechanism improves attestation efficiency.