一种改进的信任链模型

An Improved Model of Trusted Chain

下载PDF

导出

摘要基于BIBA模型,对TCG规范中信任链传递过程中的完整性进行了分析,指出信任链传递写入过程中存在的完整性问题,提出了一种改进的信任链传递模型,实现了系统上电到系统装载过程可信校验和访问控制的方法,有效阻止了恶意代码植入和运行。 Based on BIBA model,the integrity of the software components,which in turn boot during the TCG-standardized system startup,is analyzed.And a writing problem is found.To solve the problem,an improved model is proposed.In the model,the integrity checkout and access control are enforced from the chipset power-on to loading process of the system,so that the implant and execution of malicious codes can be effectively prevented.

作者郑志蓉顾燕

机构地区海军计算技术研究所海司信息化部工程设计室

出处《舰船电子工程》 2013年第7期79-82,共4页 Ship Electronic Engineering

关键词信任链系统完整性 BIBA模型 trusted chain system integrity BIBA model

分类号 TP309 [自动化与计算机技术—计算机系统结构]

引文网络
相关文献

参考文献11

1Trusted Computing Group. TPM Main Part 1 :Design Princi ples Specification Version 1. 2 [EB/OL]. 2006. [2013 -04 -07]. https://www. Trusted computinggroup, org/developers/ tpm.
2Trusted Computing Group. TPM Main Part 2 : TPM Structures Specification version 1-2 [EB/OL]. 2006. [2013-04-07]. ht tps://www. Trusted computinggroup, org/developers/tpm.
3Trusted Computing Group. TPM Main Part 3: Commands Specification Version 1.2[EB/OL]. 2006. [2013-04-07]. ht tps://www. Trustedcomputinggroup. org/developers/tpm.
4Trusted Computing Group. TCG Architecture Overview [EB/ OL]. 2007. [2013-04-07]. https:// www. Trustedcomput inggroup, org/developers/infrastructure.
5Trusted Computing Group. PC Client Work Group PC Client Specific TPM Interface Specification (TIS), Version 1.2 [EB/ OL]. 2007. [2013 -04- 07]. https://www. Trustedeomputing group, org/developers/pc_client.
6Trusted Computing Group. TCG PC Client Specific Implemen tation Specification For Conventional BIOS [EB/OL]. 2007. [2013- 04- 07]. https://www. Trustedcomputinggroup. org/ developers/pc client.
7Ames, S.R. , Jr. , Gasser, M. , and Schell, R.R. Security Kernel Design and Implementation: An Introduction. Comput- er [J]. Computer, 1983, 16(7): 14-22.
8Biba K J. Integrity Considerations for Secure Computer Sys terns [M]. US: Defense Technical Information Center, 1977: 1 -68.
9D E Bell, L J LaPadula. Secure Computer System: Unified ex position and MULTICS interpretation [R]. US:The MITRE Corporation, 1976: 1 -129.
10Lee Badger. Information Security: From Reference Monitors to Wrappers [C]. In proc of 12^th Annual Conference on Com puter Assurance, 1997: 122-124.

1左双勇.信任链传递研究进展[J].桂林电子科技大学学报,2010,30(4):320-325.
2李小将,师俊芳,梅栾芳,陈娟.嵌入式可信终端的信任链模型研究[J].计算机应用与软件,2010,27(10):55-57. 被引量：3
3文凯,何小东.一种基于网络爬虫的跨站脚本漏洞检测方法[J].电脑编程技巧与维护,2012(24):121-123. 被引量：3
4警惕Android扣费门[J].微电脑世界,2011(2):116-116.
5司丽敏,蔡勉,陈银镜,郭颖.一种信任链传递模型研究[J].计算机科学,2011,38(9):79-81. 被引量：5
6乔宜.CD-R原理、特点及应用[J].广播电视信息,2000(12):37-38.
7赫芳.可信计算技术安全性分析[J].保密科学技术,2012(7):62-65.
8章睿,刘吉强,彭双和.基于EFI的信任链传递研究及实现[J].计算机应用,2007,27(9):2174-2176. 被引量：6
9刘美芹,方敏.基于代码植入的协议测试研究[J].电子科技,2007,20(2):46-50.
10杨扬,王刚,李正熙.VxWorks系统的映像及其装载过程解析[J].工业控制计算机,2007,20(4):50-51. 被引量：1

舰船电子工程

2013年第7期

浏览历史

内容加载中请稍等...

一种改进的信任链模型

参考文献11

相关作者

相关机构

相关主题

浏览历史