中文摘要：

存在遥远的证实计划在提高安全保证水平上基于信任计算有一些优点，但是他们通常不与古典系统安全机制紧集成。在这份报纸，我们在场一个部件说出遥远的基于证实的存取控制器(RABAC ) ，它基于技术的联合例如随机的数字， Bell-La Padula (BLP ) 模型，用户身份等等与他的安全性质结合了。部件能验证当前的硬件和遥远的平台的软件完整，并且与不同安全政策实现存取控制。我们证明 RABAC 不能仅仅在遥远的证实过程改进转移信息的安全而且有效地集成遥远的证实和古典系统安全机制。

英文摘要：

Existing remote attestation schemes based on trusted computing have some merits on enhancing security assurance level, but they usually do not integrate tightly with the classical system security mechanism. In this paper, we present a component named remote attestation-based access controller （RABAC）, which is based on a combination of techniques, such as random number, Bell-La Padula （BLP） model, user identity combined with his security properties and so on. The component can validate the current hardware and software integrity of the remote platform, and implement access control with different security policy. We prove that the RABAC can not only improve the security of transferred information in remote attestation process but also integrate remote attestation and classical system security mechanism effectively.