Multi-case dynamic remote certification method based on TPM

A remote attestation, multi-instance technology, applied in the field of information security

Inactive Publication Date: 2009-01-14
INST OF SOFTWARE - CHINESE ACAD OF SCI
View PDF0 Cites 16 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Basically all proof methods are to solve the problem of a single remote proof instance on the platform, and the concurrent proof of complex multiple proof instances rarely involves

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Multi-case dynamic remote certification method based on TPM
  • Multi-case dynamic remote certification method based on TPM
  • Multi-case dynamic remote certification method based on TPM

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0054] Below in conjunction with specific embodiment and accompanying drawing, the present invention is further described:

[0055] The main states in the MRAI attestation running cycle in this embodiment include: creating a new RAI session, RAI initial attestation, RAI state update attestation, and RAI session closing, as shown in the appendix figure 2 shown. Each RAI is in one of these four states, and multiple RAIs are running on the system at the same time, and concurrently use the same TPM to prove the running state. Among the four states of RAI, the state S0 to S3 is a one-way transition process, except that the state S2 can be continuously in a cyclic state.

[0056] The main states of MRAI proofs and their transformations will be described in detail below.

[0057] 1. New session state

[0058] When a RAI instance is in the new session state, that is, the RAI instance program has just started running, the TPM management module located in the trusted service layer w...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a TPM-based multi-instance dynamic remote attestation method which belongs to the field of information security technology. The method comprises the steps as follows: a) an RAI instance is started: the TPM measures the RAI instance and issues an initial attestation certificate for the RAI instance; the remote relying party of the RAI instance obtains and authenticates the initial attestation certificate, if the authentication is passed, the link between the RAI instance and the remote relying party of the RAI instance is established; b) if the component of the RAI instance is updated, the TPM re-measures the RAI instance and issues an updating attestation certificate; the remote relying party of the RAI instance obtains and authenticates the updating attestation certificate; if the authentication is passed, the link is maintained; and c) the step b) is repeated until the RAI instance is closed and the link is disconnected; meanwhile, all the attestation steps of a plurality of RAI instances intersperse with each other for forming a TPM attestation chain. Compared with the remote attestation methods of other trusted computing platforms, the method is characterized by the dynamic attestation of platform status, the concurrent attestations of multiple network programs, and anti-replay attack, etc.

Description

technical field [0001] The invention relates to a TPM-based multi-instance dynamic remote attestation method. Specifically, the invention relates to a trusted computing platform-based remote attestation method for concurrently attesting to the credibility of multiple RAI instances and their operating environments. The invention belongs to the technical field of information security. Background technique [0002] In 1999, several major companies such as Compaq, HP, IBM, Intel, and Microsoft led the establishment of TCPA (Trusted Computing Platform Alliance), and more than 200 computer companies / enterprises around the world joined it. In 2001, the organization launched the Trusted Computing Module (Trusted Platform Module) : TPM) 1.1 related software and hardware technical specifications. In 2003, TCPA was reorganized into TCG (Trusted Computing Group), with the goal of comprehensively promoting trusted computing technology from an industrial perspective, and launched the TPM...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/00G06F21/52
Inventor 秦宇冯等国汪丹
Owner INST OF SOFTWARE - CHINESE ACAD OF SCI
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap