Certification and remote attestation methods of the eTPM trusted cloud

Trust computing is widely used in various enterprise clouds now. While benefiting from the protections and services provided by the trusted cloud, internal departments of the enterprise are also faced with some security issues, as current trusted cloud schemes lack the specific design for identity authentication during the internal communication of the enterprise cloud. In this paper, we proposed certification and remote attestation methods based on eTPM (enclave-TPM) trusted cloud scheme to enhance security of enterprise cloud. We design the signature mechanism in certification and remote attestation in detail, enable that the enterprise cloud internal departments can perform identity authentication during the interactions. And the SVO logic is used to prove and analyze the eTPM certificate and remote attestation methods. The results show that the methods can achieve the desired objective and prevent replay attacks.