摘要
针对传统加解密技术在安全存储领域面临的挑战,提出了一种基于TrustZone机制的安全加解密以及存储系统设计。TrustZone是一种硬件安全技术,它通过在处理器中集成安全内核,为用户提供一个安全执行环境。在TrustZone环境下,应用程序可以执行安全敏感操作,如密钥管理和加密算法实现等。详细介绍了该方案的设计、安全加解密流程和应用场景,并对方案安全性分析和评估。实验结果验证了本方案系统的安全性能和效率,展示了与传统加解密方法对比的优越性,为加解密技术的研究和发展提供了新思路。
Aiming at the challenges faced by traditional encryption and decryption technology in the field of secure storage,a secure encryption and decryption and storage system design based on TrustZone mechanism is proposed.TrustZone is a hardware security technology and provides a secure execution environment for users by integrating a secure kernel into the processor.In the TrustZone environment,applications can perform security sensitive operations,such as key management and encryption algorithm implementation etc.A detailed introduction was made on this design,secure encryption and decryption process and application scenarios.The security of this design was analyzed and evaluated.The results of test verify the secure performance and efficiency of this design,demonstrate its superiority over traditional encryption and decryption methods,and provide new idea for the research and development of encryption and decryption technology.
作者
梁祖丹
龙荣平
陆彬
陶健军
LIANG Zu-dan;LONG Rong-ping;LU Bin;TAO Jian-jun(Guangxi Water&Power Design Institute Co.,Ltd.,Nanning 530023,China)
出处
《广西水利水电》
2024年第4期124-127,132,共5页
Guangxi Water Resources & Hydropower Engineering
关键词
安全加解密
TrustZone机制
安全架构
密钥管理
加解密算法
硬件加密
防篡改
secure encryption and decryption
TrustZone mechanism
secure architecture
key management
encryption and decryption algorithm
hardware encryption
tamper-proof
