Dynamic running method for security kernel service of tristate operating system in Feiteng CPU

A security kernel and operating system technology, which is applied to the field of dynamic operation of three-state operating system security kernel services on the Phytium CPU, can solve problems such as operating system security threats, and achieve reduced security risks, efficient, flexible and trusted computing ecological environment, efficient and reliable The effect of credibility confirmation

Active Publication Date: 2015-11-04
TSINGHUA UNIV +1
View PDF4 Cites 36 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0014] 2. Security threats of the current operating system

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Dynamic running method for security kernel service of tristate operating system in Feiteng CPU
  • Dynamic running method for security kernel service of tristate operating system in Feiteng CPU
  • Dynamic running method for security kernel service of tristate operating system in Feiteng CPU

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0068] Such as figure 2 As shown, this embodiment is specifically described by taking the implementation on the Phytium 1500A processor platform as an example. The Phytium 1500A processor platform based on SoC (System on Chip) includes multiple (4-16) processing cores, memory access controller MCU, DDR3 memory, USB controller based on AMBA bus, SATA controller, FLASH memory, and Multiple slots supporting PCIE3.0 protocol. In addition, the platform also includes a simple CRTM module connected to the Flash memory only through the SPI bus, which is used to verify the authenticity of the contents of the Flash memory before the main CPU is powered on.

[0069] Such as image 3 As shown, the steps of the method for dynamically running the secure kernel service of the three-state operating system on the Feiteng CPU in this embodiment include:

[0070] 1) Keep the lowest privilege level of the application program in the user mode unchanged, divide the kernel of the operating syste...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a dynamic running method for a security kernel service of a tristate operating system in a Feiteng CPU. The method comprises the steps of: dividing a kernel into a system state and a kernel state of different privilege levels; establishing a service framework in the kernel state to serve as a container for the security kernel service, and establishing a call interface for the security kernel service; establishing a virtual driving interface in the system state to support a user state to call the security kernel service; loading the service framework and the built-in security kernel service after enabling the CPU to be powered on; and loading a loading part of a system service module and starting a system service, wherein the service framework provides the security kernel service and makes a response to a dynamic loading/unloading request of the security kernel service. The dynamic running method can realize security protection on specific hardware resources of the system, realize security access to a core service of the operating system, efficiently support credibility conformation of the system, effectively improve the system security, lower the security risk of traditional kernel bugs and provide an efficient and flexible credible calculating ecological environment for users.

Description

technical field [0001] The invention relates to a security kernel service technology of a computer operating system, in particular to a dynamic operation method for a three-state operating system security kernel service on a Feiteng CPU. Background technique [0002] 1. Main problems currently encountered in operating system and kernel design. [0003] The operating system is generally used as the basic software that runs directly on the hardware. Its function is to directly control and manage system resources (including software and hardware) to give full play to the performance of hardware resources; it resides in memory and provides two Interface: operation interface and programming interface. Through the operation interface, the user can use the computer conveniently without knowing many details related to hardware and system software. Various programs can use the programming interface to let the operating system serve them, and use the hardware and software resources ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/53G06F21/57
CPCG06F21/53G06F21/575
Inventor 廖湘科董攀吴庆波戴华东魏立峰黄辰林丁滟
Owner TSINGHUA UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap