Method for remote dynamic verification on integrality of client software

A client software and dynamic verification technology, applied in electrical components, transmission systems, etc., can solve problems such as software trustworthiness and security risks

Inactive Publication Date: 2010-09-15
BEIJING JIAOTONG UNIV
View PDF5 Cites 38 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] Currently in the published literature (including patents), only the literature (Remote attestation on legacy operating systems with trusted platform modules; Dries Schellekens, Brecht Wyseur, Bart Preneel; Electronic Notes in Theoretical Computer Science, Volume197, Issue 1, February 2008) will TPM time Stamping technology is applied to realize remote proof that has nothing to do with the operating system, that is, it does not need to modify the operating system where the verified file is located; although the method proposed in this document solves some problems in the Pioneer scheme, in this method, the The trusted base of verified software has security risks

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method for remote dynamic verification on integrality of client software
  • Method for remote dynamic verification on integrality of client software
  • Method for remote dynamic verification on integrality of client software

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0041] The method provided by the present invention requires the network client to be equipped with a trusted security chip TPM on the hardware, and the client BIOS supports the TPM; requires the network client to install a Xen virtual machine and an operating system trusted boot manager on the software, and requires the network Client Privileged Virtual Domain's operating system with TPM driver and Trust Metrics module requires network client front-end authentication proxy module The network port number used by the authentication agent module to wait for messages from the authentication module is public, requires network client network client The client privileged virtual domain has an AIK certificate, and the private key corresponding to the certificate is stored in the TPM; the web server maintains a client information database, and the web server has the expected value of the network client platform information and the expected value of the self-contained executable software...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a method for remote dynamic verification on integrality of client software. In the method, a TCG (Trusted Computing Group) remote verification method, an Xen virtual machine security isolation property and a Trusted Platform Module (TPM) timestamp function are adopted to realize remote dynamic verification of a network server on self-contained executables of a network client untrusted client virtual domain. The network client is configured with a security chip TPM (Trusted Platform Module) and an Xen virtual machine system is also installed. A remote dynamic verification framework adopted by the method comprises three parts of an integrality measuring mechanism, a reporting mechanism and a verification mechanism, wherein the integrality measuring mechanism is completed by a back-end verification agent module installed in a network client privileged virtual domain and a memory measuring module installed in a network client virtual machine monitor; the reporting mechanism is completed by a front-end verification agent module installed in the network client virtual domain; and the verification mechanism is completed by a verification module installed d in the network server.

Description

technical field [0001] The invention relates to a method for remotely and dynamically verifying the integrity of client software, belonging to the field of computer information security. Background technique [0002] At present, many attack methods that damage terminals are implemented by injecting various forms of malicious codes such as viruses, worms, spyware, and phishing software rather than by damaging secure channels. Therefore, the security of communication endpoints is an issue that cannot be ignored. For this reason, many network services such as online banking usually need to remotely verify the integrity of client-related software before providing services to clients, so as to ensure that they are serving legitimate clients. This verification process is called remote certification or remote verification. The verification object of the remote attestation may be the application software file, or the data in the program code segment, program data segment, program st...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
Inventor 常晓林崇信毅王绍创左向晖韩臻刘吉强鞠颂
Owner BEIJING JIAOTONG UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap