摘要
手机短信已成为手机应用中双因子验证的常用方法,广泛用于网站登录、移动支付、银行转账等关键应用中。许多恶意软件利用手机系统漏洞来窃听短信和截取用户的验证码,从而对用户的财产安全造成了巨大的威胁。为防御这类恶意软件,许多基于对称密钥、公私钥体制等加密算法的手机短信加密软件已经被开始使用,给用户带来了较大便利。然而此类解决方案并不能保证在智能手机操作系统被攻破时短信明文数据与密钥数据的安全性。本文提出的Trust SMS系统通过利用ARM Trust Zone技术,可以同时保证短信数据在传输过程中与在智能手机操作系统内的安全性。本文在三星Exynos 4412开发板上实现了Trust SMS的原型系统,实验数据表明Trust SMS系统对智能手机操作系统产生的影响极小,性能开销则低于1%。
SMS has become a common used method in two-factor authentication,which is widely used for website login,mobile payment,bank transfer and other critical applications. However,many malicious applications take use of mobile operating system vulnerabilities to eavesdrop and intercept SMS for users' authentication code,which brings a great threat on the security of the user's property. To defend such malicious applications,many SMS encryption applications based on symmetric key encryption algorithm or public / private key system have been started using,which bring great convenience to the users. However,such solutions cannot guarantee the confidentiality of the SMS plaintext or even the seeds when the mobile OS is compromised. This paper presents Trust SMS( Trusted Short Message Service),a secure SMS encryption scheme by using ARM Trust Zone technology. Trust SMS can not only protect the confidentiality of the SMS against a malicious mobile OS,but also guarantee reliable end-to-end SMS transmission. A prototype of Trust SMS is developed on Samsung Exynos 4412. The experimental results show that Trust SMS has small impacts on the mobile OS and its performance overhead is less than 1%.
出处
《计算机与现代化》
2016年第4期29-35,共7页
Computer and Modernization
基金
国家自然科学基金资助项目(61303011)
上海张江国家自主创新示范区专项发展资金重点项目(201501-YPB108-012)
