Existing　remote　attestation　schemes　based　on　trusted　computing　have　some　merits　on　enhancing　security　assurance　level,　but　they　usually　do　not　integrate　tightly　with　the　classical　system　security　mechanism.　In　this　paper,　we　present　a　component　named　remote　attestation-based　access　controller　(RABAC),　which　is　based　on　a　combination　of　techniques,　such　as　random　number,　Bell-La　Padula　(BLP)　model,　user　identity　combined　with　his　security　properties　and　so　on.　The　component　can　validate　the　current　hardware　and　software　integrity　of　the　remote　platform,　and　implement　access　control　with　different　security　policy.　We　prove　that　the　RABAC　can　not　only　improve　the　security　of　transferred　information　in　remote　attestation　process　but　also　integrate　remote　attestation　and　classical　system　security　mechanism　effectively.　©　2010　Wuhan　University　and　Springer-Verlag　Berlin　Heidelberg.