摘要
针对内存和片外总线可能遭受的物理攻击,为保护内存数据安全,提出了一种基于软硬件协同的程序安全关键数据动态保护机制,提取用户定义的安全关键数据放置于安全区域,并且采用动态完整性验证的方式来判断其是否遭到篡改。与传统的程序内存数据保护机制相比,该机制具备能够预防基于硬件及软件的攻击、节约片上和片外存储空间、完整性运算量小、安全效能高等优点。
In response to the physical attacks on the internal storage and off-chip bus so as to ensure the safety of stored data, we propose a dynamic mechanism of critical data protection based on hardwaresoftware cooperation, which can extract user-defined key safety data, store them into the key safety area, and adopt dynamic integrity verification to examine whether the data has been tampered. Compared with the traditional way of protecting program memory data, the proposed method has the advantage of preventing attacks on the hardware and software, saving on-chip and off-chip memory, reducing the processing time and enhancing the safety performance.
出处
《计算机工程与科学》
CSCD
北大核心
2016年第2期249-254,共6页
Computer Engineering & Science
基金
国家自然科学基金(61402501)
关键词
程序
安全关键数据
软硬件协同
动态保护
program
critical safety data
hardware-software cooperation
dynamic protection