摘要
针对TCG可信平台的核心可信度量根不明确、缺乏有效的端口控制、对外接口速度低等缺陷,设计并实现了一种安全增强的可信硬件平台。该平台在借鉴TCG可信平台体系结构的基础上,以可信平台控制模块为核心可信度量根,解决了信任根的保护问题,同时实现了基于身份的I/O端口硬件控制,从而具有了更安全的可信启动、I/O有效控制等优点,可用在对可信安全要求较高的环境中。
Aiming at the problems of ambiguous CRTM (core root of trust for measurement), a lack of efficacious control of I/O port, and low speed interface, a security enhanced hardware platform of trusted computing is designed and implemented. Based on the trusted platform of TCG (trusted computing group), this platform sets the trusted platform control module as the CRTM. The security problem of RTM (root of trusted measurement) is solved in this platform. And the hardware control of the I/O ports is implemented based on identity. Therefore, this platform possesses more powerful functions like safer root of trust, efficacious control of I/O, and so on. It can be used in the case which needs more security protection.
出处
《计算机工程与设计》
CSCD
北大核心
2011年第2期501-504,共4页
Computer Engineering and Design