A Separated Domain-Based Kernel Model for Trusted Computing

A Separated Domain-Based Kernel Model for Trusted Computing

下载PDF

导出

摘要 This paper fist gives an investigation on trusted computing on mainstream operation system （OS）. Based on the observations, it is pointed out that Trusted Computing cannot be achieved due to the lack of separation mechanism of the components in mainstream OS. In order to provide a kind of separation mechanism, this paper proposes a separated domain-based kernel model （SDBKM）, and this model is verified by non-interference theory. By monitoring and simplifying the trust dependence between domains, this model can solve problems in trust measurement such as deny of service （DoS） attack, Host security, and reduce the overhead of measurement. This paper fist gives an investigation on trusted computing on mainstream operation system （OS）. Based on the observations, it is pointed out that Trusted Computing cannot be achieved due to the lack of separation mechanism of the components in mainstream OS. In order to provide a kind of separation mechanism, this paper proposes a separated domain-based kernel model （SDBKM）, and this model is verified by non-interference theory. By monitoring and simplifying the trust dependence between domains, this model can solve problems in trust measurement such as deny of service （DoS） attack, Host security, and reduce the overhead of measurement.

作者 FANG Yanxiang SHEN Changxiang XU Jingdong WU Gongyi

机构地区 College of Information Technical Science Naval Institute of Computing Technology

出处《Wuhan University Journal of Natural Sciences》 CAS 2006年第6期1424-1428,共5页 武汉大学学报（自然科学英文版）

基金 Supported bythe National Basic Research Programof China (G1999035801)

关键词 noninterference teory separation kernel trusted computing noninterference teory separation kernel trusted computing

分类号 TP316 [自动化与计算机技术—计算机软件与理论]

引文网络
相关文献

参考文献9

1Trusted Computing Group.TPM Main Specification Version 1 .2[].htt:// wwwtrustedcomput- inggrouporg.2006
2Garfinkel T,Pfaff B,Chow J Terra.A Virtual Machine- Based Platformfor Trusted Computing[].Proceedings of theth ACMSymposiumon Operating Systems Principles.2003
3Sailer R,Zhang Xiaolan,Jaeger T,et al.Design and Imple- mentation of a TCG-Based Integrity Measurement Architec- ture[].Proceedingof theth USENIX Security Sym- posium.2004
4Reid J F,Caelli WJ.DRMtrusted computing and operating system architecture[].Proc of Australasian Information Security Workshop.2005
5Nancy L. Kelem,and Richard J. Feiertag.A separation model for virtual machine monitors[].Research in Security and Privacy.1991
6Rushby J.Proof of Separability:A Verification Technique for a Class of Security Kernels[].Procof International Symposium on Programming.1982
7Rushby,J. Safe and Secure Computing Systems . 1989
8Rushby,J. Noninterference, Transitivity, and Channel-Control Security Policies . 1992
9Grace,H N. Proposed Technical Evaluation Criteria for Trusted Computer Systems . 1979

1陈绍荣,刘希顺,刘安芝.意识和联想记忆模型[J].厦门大学学报（自然科学版）,2004,43(5):619-623.
2李玲娟,王汝传.一种基于数据挖掘的入侵检测系统模型[J].南京邮电学院学报（自然科学版）,2005,25(5):40-43. 被引量：2
3王琪,彭进业,郭珊珊.一种基于混合特征核的图像检索方法[J].计算机工程与应用,2012,48(15):168-171. 被引量：5
4刘敏,严隽薇.基于面向服务架构的企业间业务协同服务平台及技术研究[J].计算机集成制造系统,2008,14(2):306-314. 被引量：27
5简杰鸿,刘朝辉.Linux字符设备驱动开发方法与应用实例[J].华南金融电脑,2010(10):99-101.
6张晓清,潘清,龚波.基于控制流与数据流分离机制的网络服务方法[J].软件,2014,35(3):111-113. 被引量：1
7李海花.传送资源控制及移动性管理的研究及进展[J].电信技术,2009(8):23-26.
8高远,尚雷,何永辉.基于支撑向量机的软件测试方法[J].指挥信息系统与技术,2016,7(3):96-100.
9中国互联网协会卢卫秘书长:建设清朗、健康、美丽的云[J].互联网天地,2016(10):84-85.
10王小龙,何克忠,房小翠,丁冬花.Linux设备驱动开发方法及应用实例[J].北京工商大学学报（自然科学版）,2005,23(3):24-26. 被引量：4

Wuhan University Journal of Natural Sciences

2006年第6期

浏览历史

内容加载中请稍等...

A Separated Domain-Based Kernel Model for Trusted Computing

参考文献9

相关作者

相关机构

相关主题

浏览历史