摘要
国产化嵌入式平台的安全威胁依旧严峻,为了提高国产化平台的安全性与可控性,可信技术的应用十分关键。在基于龙芯2K-1000CPU的国产化嵌入式平台上,采用可信平台控制模块(Trusted Platform Control Module,TPCM),应用可信启动、可信软件基、可信文件存储和I/O口的可信访问等技术,实现了国产化嵌入式平台的可信运行。TPCM可信模块基于CCP903T密码芯片实现。此平台已在某安全项目中通过测试投入使用,对可信技术在国产化平台的应用以及标准化形成留下参考性意义。
The security threats of localized embedded platforms are still severe.In order to improve the security and controllability of localized platforms,the application of trusted technology is critical.This article uses a trusted platform control module(TPCM)on a localized embedded platform based on the Godson 2K-1000CPU,using trusted boot,trusted software base,trusted file storage and I/O ports.Technology such as trusted access realizes the trusted operation of the localized embedded platform.The TPCM trusted module is implemented based on the CCP903T cryptographic chip.This platform has been tested and put into use in a security project,leaving a reference for the application of trusted technology in the localization platform and the formation of standardization.
作者
孟祥斌
刘笑凯
郝克林
Meng Xiangbin;Liu Xiaokai;Hao Kelin(National Computer System Engineering Research Institute of China,Beijing 100083,China)
出处
《电子技术应用》
2021年第12期94-99,共6页
Application of Electronic Technique
关键词
可信启动
可信平台控制模块
国产化平台
I/O口可信访问
trusted boot
trusted platform control module(TPCM)
localization platform
I/O port trusted access