Mobile terminal system supporting dynamic remote attestation

Abstract

The invention relates to a mobile terminal system supporting dynamic remote attestation. The mobile terminal system comprises a control flow control kernel module, a hybrid remote attestation module and an attestation interaction module, wherein the control flow control kernel module is used for realizing a control flow model on an operating system of a mobile terminal and controlling the subject attribute, object attribute, capability conditions, constraint conditions and environment conditions in the mobile terminal system based on the control flow model and a security policy; the hybrid remote attestation module simultaneously supports a model-behavior-based remote attestation method and a multiple-measurement-based remote attestation method, and is used for carrying out remote authentication on the subject attribute, object attribute, capability conditions, constraint conditions and environment conditions in the system; and the attestation interaction module is used for transmitting attestation information acquired by the hybrid remote attestation module to a server for authentication and receiving authentication result information from the server. According to the mobile terminal system supporting the dynamic remote attestation, disclosed by the invention, the model-behavior-based remote attestation method and the multiple-measurement-based remote attestation method can be simultaneously applied to the mobile terminal system, so that the credibility and security of the mobile terminal system are enhanced.

Description

technical field [0001] The invention relates to the technical field of electronic information, in particular to a mobile terminal system supporting dynamic remote certification. Background technique [0002] Verifying that the computing environment is secure and trustworthy is an important goal of trusted computing. With the development of technology, security threats on mobile terminals are also increasing. Research shows that 800,000 people were infected with malware every month in 2011 on the Android platform alone. Traditional anti-virus, intrusion detection and other security mechanisms also rely on the security support of the underlying operating system. Trusted computing technology achieves the purpose of ensuring computer security and reliability by enhancing the overall security of the entire computing system from the root of trust to trusted hardware, to trusted operating systems, and to trusted applications. "Trusted" in trusted computing includes security and ...

AI Technical Summary

Problems solved by technology

[0003] The present invention provides a mobile terminal system supporting dynamic remote certification, which is used to solve the problem that the remote certification method based on model behavior and the remote certification method based on multiple measurements cannot be applied to the mobile terminal system at the same time in the prior art. There is no problem of further improving the credibility and security of the mobile terminal system

Images