摘要
冷启动攻击是近年来出现的一种以获取计算机运行时内存快照并从中提取出密钥等秘密信息为目的的攻击方式。它利用了内存芯片的物理特性,对几乎所有常见的计算机硬件平台及平台上的各种密码系统广泛适用,难以通过简单的软硬件方式进行抵御,对计算机系统的安全构成了极大的威胁。介绍了冷启动攻击的基本原理、实施办法以及从获得的内存快照中恢复和重建密钥的办法;概括了冷启动攻击的主要抵御策略,介绍了不同抵御策略下具体抵御方法并对不同方法的优缺点进行比较;分析展望了对冷启动攻击的未来研究趋势。
Cold boot attack is a new attack method that targets at acquiring a memory snapshot of the target running computer and recovers sensitive information such as private keys from the snapshot. The attack leverages the basic physical property of DRAM chips. Almost all computer systems are vulnerable to this attack,includes PCs,laptops,smart devices. The attack cannot be defeated with simple software or hardware mechanisms and brings great threats to these devices. This paper introduced the principle of the cold boot attack and how to perform the attack. It summarized the strategy to defeat the cold boot attack. It introduced various methods under different strategies to defeat the attack and compared them. It analyzed the future researches on the cold boot attack.
出处
《计算机应用研究》
CSCD
北大核心
2015年第10期2886-2890,2900,共6页
Application Research of Computers
基金
国家自然科学基金资助项目(61170263)
国家"核高基"科技重大专项课题基金资助项目(2012ZX01039-004-009)
信息网络安全公安部重点实验室开放课题资助项目(C11606)
关键词
冷启动攻击
密码学
动态内存
数据剩余
cold boot attack
cryptography
dynamic random access memory(DRAM)
data remanence
