A TPM-based method for secure boot control of an operating system

A technology for secure start-up control and operating system, applied in computer security devices, instruments, electrical digital data processing, etc., can solve problems such as inability to protect the security of the operating system, and achieve the effect of enhancing security value

Active Publication Date: 2018-09-04
LANGCHAO ELECTRONIC INFORMATION IND CO LTD
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0002] The security of personal information is getting more and more attention. However, the traditional measures to protect personal information security are still limited to the bottleneck of installing anti-virus software and firewalls. They can only protect the security of the operating system while it is running, but cannot protect the security of the operating system before it runs. safety

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A TPM-based method for secure boot control of an operating system
  • A TPM-based method for secure boot control of an operating system
  • A TPM-based method for secure boot control of an operating system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0019] A TPM-based operating system security boot control method, which configures the operating system security boot control policy and measurement configuration file, measures the specified measurement configuration file, and uses the obtained measurement results as a benchmark value after iteration, and compares it with the security boot control The policy and measurement configuration files are stored in the TPM chip, and the operating system kernel is encrypted with the benchmark value;

[0020] Use OS Loader to boot the operating system, read the measurement configuration file in the TPM chip, measure the specified measurement configuration file, and obtain the measurement value after iteration of the measurement result, use the measurement value to decrypt the operating system kernel, the decryption is successful, and the operating system Start normally; otherwise, make a corresponding security boot control action according to the security boot control strategy informati...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a TPM-based operating system security startup control method, which belongs to the field of trusted computing; the invention configures the security startup control strategy of the operating system into the TPM chip, measures a specified measurement configuration file, and obtains a reference value Encrypt the operating system kernel, and then when the operating system starts, combined with OS Loader guidance, read the measurement configuration file in the TPM, measure the specified measurement configuration file, and obtain the measurement value to decrypt the operating system kernel. If the decryption fails, According to the boot control policy information in the TPM, corresponding secure boot control actions are made, so as to achieve configurable and controllable secure boot of the operating system.

Description

technical field [0001] The invention discloses a TPM-based safe startup control method for an operating system, which belongs to the field of trusted computing. Background technique [0002] The security of personal information is getting more and more attention. However, the traditional measures to protect personal information security are still limited to the bottleneck of installing anti-virus software and firewalls. They can only protect the security of the operating system when it is running, but cannot protect the security of the operating system before it is running. safety. The present invention proposes a TPM-based operating system security startup control method, by configuring the security startup control strategy of the operating system into the TPM chip, measuring the specified measurement configuration file, obtaining the benchmark value and encrypting the operating system kernel, and then When the operating system is started, combined with OS Loader guidance,...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): G06F21/51G06F21/57
CPCG06F21/51G06F21/57G06F21/575
Inventor 杨博中许鑫
Owner LANGCHAO ELECTRONIC INFORMATION IND CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap