Process behavior-based platform integrity state information measurement method

A technology of platform integrity and state information, which is applied in the fields of platform integrity maintenance, instrumentation, electrical digital data processing, etc., to achieve the effect of improving measurement efficiency

Active Publication Date: 2018-08-14
NANJING UNIV OF AERONAUTICS & ASTRONAUTICS
View PDF4 Cites 16 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

But there is no relevant description in the prior art

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Process behavior-based platform integrity state information measurement method
  • Process behavior-based platform integrity state information measurement method
  • Process behavior-based platform integrity state information measurement method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment

[0063] Implement the inventive method based on the x86 mainframe carrying the Linux-2.6.32 kernel version, the operating system uses the Ubantu operating system embedded in the TPM simulator, the trusted protocol stack TrouSerS, and compiles the functional modules of the inventive method into the kernel as an integrity measure module runs, and using this as an example, an integrity measurement framework embedded in the kernel such as figure 2 shown.

[0064] The measurement results of about 60-70 bash scripts and binary files were observed in the experiment, and the measurement list is as follows image 3 shown. The first row and the first column "10" in the figure indicate that the hash value of the measurement object and the index node is extended to the No. 10 register of the PCR, the second column "9202b189adcee134057a807610df110e5a71e36f" records the hash value of the object index node, and the third column "sha1 :5b9cf6a1cf1f454f53d15812b06b5691d9471809" records the s...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a process behavior-based platform integrity state information measurement method. The method comprises the following steps of 1, capturing a measurement request of an application layer, and extracting a measurement object from an application; 2, analyzing a running state and an executive parameter of the application, and collecting process behavior information related to the measurement object; 3, according to a behavior characteristic, judging whether a current measurement result is added to a measurement list or not, and collecting the process behavior information related to the measurement object in the measurement list; 4, storing the measurement result in a specific PCR of a trusted platform module through expansion operation, generating a measurement report and sending the measurement report to a log audit mechanism of the application layer; and 5, according to the measurement list, a measurement log and the measurement result stored in the PCR, verifyingand calculating integrity state information of the platform. According to the higher-granularity integrity state information measurement method provided by the invention, the reflected to-be-verifiedand calculated security attribute information of the platform is more accurate, so that the measurement efficiency can be improved.

Description

technical field [0001] The invention belongs to the fields of trusted computing and remote certification, in particular to a method for measuring platform integrity state information based on process behavior information. Background technique [0002] With the rapid popularization of Internet applications, people use them more and more widely in daily life. Due to the open interconnection of the Internet, many unsafe factors have been added at the same time, such as viruses, worms, and Trojan horses. They attack terminals through vulnerabilities and seriously threaten computer security. For example, the Petya ransomware virus and its variants that have swept across more than 150 countries around the world since June 2017. This type of virus can spread through emails, program Trojan horses, etc., and attack by using DOC files with vulnerabilities. After poisoning, the virus will modify the MBR boot sector of the system, encrypt the NTFS partition, and prevent the machine fro...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/57
CPCG06F21/577G06F2221/034
Inventor 庄毅易平顾晶晶汪自旺
Owner NANJING UNIV OF AERONAUTICS & ASTRONAUTICS
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap