摘要
针对TCG提出的可信平台模块度量起始点和信任链构建问题,提出了可信平台控制模块(TPCM)方案,将可信度量根均设计在芯片内部,解决了可信度量根的保护问题和核心度量根的起始度量点问题,同时改进启动模式,使得该模块作为主动设备,先于CPU启动,并构建以该模块为信任根的信任链。该方案通过主动度量模式的信任链体现了可信平台控制模块(TPCM)作为整个平台信任根的控制特性。
Trusted platform module (TPM) proposed by TCG was a subordinate device and the root of trusted measurement was put into BIOS, which faces the threat to be tampered. In order to solve the problem, a novel design of Trusted platform control module (TPCM), in which the root of trusted measurement has been incorporated into the module. Therefore it is helpful to solve problems of protecting the root and the original point of measurement; meanwhile, a new kind of scheme is proposed based on the module, which establishes an active trust transitive architecture. Based on above implementation, the module shows a critical feature of controlling effect on whole platform.
出处
《武汉大学学报(信息科学版)》
EI
CSCD
北大核心
2008年第10期1011-1014,共4页
Geomatics and Information Science of Wuhan University
基金
国家重点基础研究发展计划资助项目(2007CB311100)
国家863计划资助项目(2006AA01Z440)
北京市科技计划资助项目(Z07000100720706)
关键词
可信计算
可信平台控制模块
可信度量根
信任链
trusted computing
trusted platform control module
root of trust for measurement
trusted chain