摘要
可信密码模块TCM芯片提供了非对称算法ECC以及对称算法SMS4来支持密钥机制,它与国际可信计算组织TCG推出的可信平台模块TPM功能相同,但密码算法和密钥管理不同,导致了密钥功能可信应用的兼容性问题。分析两种芯片的密钥特点和可信软件栈的密钥管理方式,提出了可信软件栈TCG服务提供者层TSP与TCG核心服务层TCS的重构方案,以及基于密钥生成流程的兼容方案,以解决密钥服务兼容问题。
TPM (Trusted Platform Module) launched by TCG (Trusted Computing Group) is the core module of trusted computing based on cryptographic technology. TPM provides asymmetric algorithm RSA to support key management scheme. Nowadays,China has raised Trusted Cryptography Module (TCM),TCM provides asymmetric algorithm ECC and symmetric algorithm SMS4 to support key management scheme. The two chips can't be compatible, therefore the compatibility problem of key generation trusted application emerged. Through analyzing key management scheme in both TCM and TPM, as well as TCG software stack (TSS), provided the modification scheme on TSP (TCG Service Provider) and TCS(TCG Core Services) of TSS and the scheme based on key creation flow to solve the problem of key services application compatibility.
出处
《计算机科学》
CSCD
北大核心
2010年第6期82-85,共4页
Computer Science
基金
国家高技术发展计划(863)项目(2006AA01Z440
2009AA012437)
哈尔滨工程大学核安全与仿真技术国防重点学科实验室开放课题HEUFN0801
国家重点基础研究发展计划(2007CB311100)资助