In Infrastructure as a Service (IaaS) environments, the user virtual machine is the user’s private property. However, in the case of privacy protection, how to ensure the security of files in the user virtual machine and the user virtual machine’s behavior does not affect other virtual machines; it is a major challenge. This paper presents a trusted measurement model based on dynamic policy and privacy protection in IaaS security domain, called TMMDP. The model first proposed a measure architecture, where it defines the trusted measurement of the user virtual machine into the trust of files in the virtual machine and trusted network behavior. The trusted measure was detected through the front-end and back-end modules. It then describes in detail the process of the trusted measurement in the two modules. Because the front-end module is in the guest virtual machine, it also describes the protocol to ensure the integrity of the module. Finally, the model proved to address security challenges of the user virtual machine in IaaS environments by a security analysis.

中文翻译：

---

在IaaS安全域中基于动态策略和隐私保护的可信度量模型

在基础架构即服务（IaaS）环境中，用户虚拟机是用户的私有财产。但是，在进行隐私保护的情况下，如何确保用户虚拟机中文件的安全性以及用户虚拟机的行为不会影响其他虚拟机。这是一个重大挑战。本文提出了一种基于动态策略和IaaS安全域中隐私保护的可信度量模型，称为TMMDP。该模型首先提出了一种度量体系结构，其中将用户虚拟机的可信度量定义为虚拟机中文件的可信性和可信网络行为。通过前端和后端模块检测到可信度量。然后，在两个模块中详细描述可信测量的过程。由于前端模块位于来宾虚拟机中，因此它还描述了确保模块完整性的协议。最后，该模型通过安全性分析证明可以解决IaaS环境中用户虚拟机的安全性挑战。