|
An Open Trusted Computing Architecture — Secure virtual machines enabling user-defined policy enforcement - OpenTC - High Level Overview
- Virtualization of computers enables a wide variety of applications ranging from server consolidation to secure sandboxing of malicious content. We show how to use virtualization to enable extended user control and scalability in a personal trusted computing architecture. We achieve this by an open architecture that adds scalable trusted computing concepts to a virtual machine infrastructure. As a result, we obtain virtual machines that are secure yet easier to maintain on a large scale. The system architecture is layered and consists of a trusted virtualization layer with strong isolation properties among virtual machines and well-defined interfaces to trusted computing and other security services such as protected storage, security policy enforcement, and identity management.
|
