摘要
当前,虚拟机技术和可信计算技术是两大热门技术,可信计算技术是实现信息系统安全的重要手段。是否可以在虚拟机的环境下,通过结合虚拟机和可信计算的技术优势,来实现终端系统与网络的可信,提高整个信息系统的安全?研究了如何设计一个基于虚拟机的可信计算平台安全架构,并进一步研究了虚拟化TPM的问题。同时,分析并总结了TCG定义的可信链技术。在此基础上,提出了虚拟机环境下可信链的实现方法,加强终端系统与网络的安全性。
Nowadays,the virtual machine technology and the trusted computing technology have become the two popular technologies. The trusted computing technology is an important means for achieving information system security. Is it possible to realize the trusted of terminal system and network by combining the technical superiorities of virtual machine and trusted computing in a virtual machine environment,and thus to enhance the security of the whole information system? A security framework for trusted computing platform based on virtual machine is studied and designed,and also the TPM issue in the virtual environment is discussed. Meanwhile,based on analysis and summary of the trusted chain technology defined by TCG,an implementation method for the trusted chain in the virtual machine environment is proposed,thus to strengthen the security of the terminal system and network.
出处
《信息安全与通信保密》
2010年第7期81-83,共3页
Information Security and Communications Privacy
关键词
虚拟机
可信计算
可信平台
可信链
virtual machine
trusted computing
trusted computing platform(TCP)
trusted chain
