摘要
MRBP(Multi-OS Remote Booting Protocol)和MRPB2协议解决了透明计算中端系统的远程启动问题,但由于这两个启动协议工作都需要通过网络收发数据,这就给攻击者留下可乘之机.本文提出的RBIS(Remote Booting Integrity Service)方法就是为了解决透明计算远程启动过程中面临的安全问题.RBIS通过对下载到端系统的引导代码进行完整性校验来提高透明计算端系统远程启动过程的安全性.实验表明RBIS能有效提高透明计算启动安全性且所需时间开销很小.
MRBP and MRBP2 help TransCom clients remote-booting with different operating systems seccussfully. However, in the process, clients must download the boostrap codes from the server in the networks. It is possible for someone to initiate an attack by substituting the downloading codes in the networks. A new security enhancement for MRBP and MRBP2, Remote Booting Integrity Sevice (RBIS), is presented to solve this problem. RBIS achieves the goal by checking the integrity of the codes received through the networks. The implementation structure and expense estimation of RBIS are also described in this paper.
出处
《小型微型计算机系统》
CSCD
北大核心
2007年第2期251-254,共4页
Journal of Chinese Computer Systems
基金
国家"八六三"高技术研究发展计划项目(2005AA114160)资助.
关键词
网络计算
完整性校验
远程启动
安全
network computing
integrity check
remote booting
security