Star trust chain supporting embedded platform application program integrality verification method

An integrity verification and application technology, applied in the field of embedded platform application integrity verification, can solve the problems of large trust loss and trust loss, and achieve the effect of convenient and flexible use, shortened trust chain, and avoiding trust loss.

Inactive Publication Date: 2009-08-12
WUHAN UNIV
View PDF0 Cites 21 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0014] Block→BIOS→Bootloader→OS kernel, this method is easy to cause trust loss between multi-level measurement agents
Therefore, when the app

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Star trust chain supporting embedded platform application program integrality verification method
  • Star trust chain supporting embedded platform application program integrality verification method
  • Star trust chain supporting embedded platform application program integrality verification method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0036] The technical scheme principle of the present invention is illustrated below in conjunction with accompanying drawing: figure 1 For the traditional chain trust chain, the order of trust transfer is that A detects B, and then passes the platform control right to B; B detects C, and then passes the platform control right to C... so that the transfer continues until the last agent N. figure 2 A simple star-shaped trust chain is provided, with A as the root of trust, and B, C...N are detected respectively. image 3 Provides a star-shaped trust chain established with TPM as the root of trust, that is, using TPM as the root of trust to measure the Bootloader (bootloader), operating system kernel and root file system respectively, and determine whether the embedded platform is allowed to work normally through the measurement report run. On this basis, the present invention provides the embedded platform application integrity verification method supported by the star chain of...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses an application program integrity verification method for an embedded platform supported by a star trust chain. The embedded platform is provided with a TPM realized by an independent hardware which is taken as a trusted measurement of the whole platform, and the TPM uses a hardwire to control the operation of the embedded platform; the inside of the TPM is integrated with a trusted computing root, a trusted storage root and a trusted report root by adopting a physical mode so as to have physical protection on the TPM and a connecting circuit; and the TPM forms star trust relationship with the embedded platform Bootloader, an operating system kernel and a root file system. The method is characterized in that an integral application program which needs trust expansion in the root file system is subjected to trusted measurement by the trusted computing root of the TPM, and an obtained trusted measurement value is saved in the trusted storage root of the TPM; and the application program is subjected to integrity measurement during the starting of an operating system, then an obtained measurement value is compared with the trusted measurement value, and the integrity verification of the application program passes if the obtained measurement value is consisted with the trusted measurement value, otherwise, the integrity verification fails.

Description

technical field [0001] The invention belongs to the field of trusted computing platforms, in particular to a method for verifying the integrity of embedded platform application programs supported by star trust chains. Background technique [0002] In the computer operating environment, "trust" is a complex concept. When the process and final results of all operations are consistent with the expectations of legal operators, the environment can be considered trustworthy. In the ISO / IEC 15408 standard, there is the following definition: the behavior of a trusted component, operation or process is always predictable under any operating conditions, and its process and results are always predictable, and it can well resist application anomalies, viruses , and to a certain extent damage caused by physical interference. [0003] The Trusted Computing Group (Trusted Computing Group, TCG) is committed to software security and hardware computing platforms with security and trust capab...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): G06F21/00G06F21/22G06F21/57
Inventor 张焕国赵波黄祥梨文松康路劳勇杨淞陈守明潘丹铃
Owner WUHAN UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap