TapCon: Practical Third-Party Attestation for the Cloud


Yan Zhai, University of Wisconsin Madison; Qiang Cao and Jeffrey Chase, Duke University; Michael Swift, University of Wisconsin Madison


One way to establish trust in a service is to know what code it is running. However, verified code identity is currently not possible for programs launched on a cloud by another party. We propose an approach to integrate support for code attestation—authenticated statements of code identity—into layered cloud platforms and services.

To illustrate, this paper describes TapCon, an attesting container manager that provides source-based attestation and network-based authentication for containers on a trusted cloud platform incorporating new features for code attestation. TapCon allows a third party to verify that an attested container is running specific code bound securely to an identified source repository. We also show how to use attested code identity as a basis for access control. This structure enables new use cases such as joint data mining, in which two data owners agree on a safe analytics program that protects the privacy of their inputs, and then ensure that only the designated program can access their data.

Open Access Media

USENIX is committed to Open Access to the research presented at our events. Papers and proceedings are freely available to everyone once the event begins. Any video, audio, and/or slides that are posted after the event are also free and open to everyone. Support USENIX and our commitment to Open Access.

@inproceedings {203332,
author = {Yan Zhai and Qiang Cao and Jeffrey Chase and Michael Swift},
title = {{TapCon}: Practical {Third-Party} Attestation for the Cloud},
booktitle = {9th USENIX Workshop on Hot Topics in Cloud Computing (HotCloud 17)},
year = {2017},
address = {Santa Clara, CA},
url = {https://www.usenix.org/conference/hotcloud17/program/presentation/zhai},
publisher = {USENIX Association},
month = jul