Measuring Method of Platform Integrity State Information Based on Process Behavior

A technology of platform integrity and state information, applied in the direction of platform integrity maintenance, instrumentation, calculation, etc., to achieve the effect of improving measurement efficiency

Active Publication Date: 2022-03-18
NANJING UNIV OF AERONAUTICS & ASTRONAUTICS
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

But there is no relevant description in the prior art

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Measuring Method of Platform Integrity State Information Based on Process Behavior
  • Measuring Method of Platform Integrity State Information Based on Process Behavior
  • Measuring Method of Platform Integrity State Information Based on Process Behavior

Examples

Experimental program
Comparison scheme
Effect test

Embodiment

[0063] Based on the X86 host based on the LINUX-2.6.32 core version, the operating system uses the Ubantu operating system embedded in the TPM simulator, the trusted protocol stack trousers, and compiles the function module of the method of the method into the kernel as the integrity metric. The module is running, and in this way as an embodiment, the integrity metrics embedded in the kernel is as figure 2 Indicated.

[0064] In the experiment, approximately 60-70 Bash scripts and binary metrics were observed, and the metrics are like image 3 Indicated. The first row of "10" in the figure indicates that the metric and index node hash value extends to the No. 10 register of PCR, the second column "9202B189ADCEE134057A807610DF110E5A71E36F" records the hash value of the object index node, the third column "SHA1 : 5B9CF6A1CF1F454F53D15812B06B5691D9471809 "SHA-1 hash value of the recording object content, fourth column" / usr / lib / python3 / dist-packages / updateManager / core / _pycache__ / melel...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method for measuring platform integrity state information based on process behavior, which comprises the following steps: step 1, intercepting the measurement request of the application layer, and extracting the measurement object from the application program; step 2, analyzing the running state and execution of the program Parameters, collect the process behavior information related to the measurement object; step 3, judge whether to add the measurement result to the measurement list according to the behavior characteristics, and collect the process behavior information related to the measurement object in the measurement list; step 4, add The measurement result is stored in the specific PCR of the trusted platform module through the extended operation, and the measurement report is generated and sent to the log audit mechanism of the application layer; step 5, verify the integrity of the computing platform according to the measurement list, measurement log and measurement results stored in the PCR sexual status information. The invention provides a method for measuring the integrity state information with finer granularity, which reflects more accurate security attribute information of the computing platform to be verified, and can improve the measurement efficiency.

Description

Technical field [0001] The present invention belongs to trusted calculations, remote proof field, in particular, a platform integrity state information metric method based on process behavior information. Background technique [0002] With the rapid spread of Internet applications, the applications in daily life are increasingly wide. Due to the open interconnection of the Internet, there are many unsafe factors, such as viruses, worms, and Trojan horses, etc., they attack the terminal through a vulnerability, seriously threatening computer security. As the Petya lesso virus and variant of more than 150 countries around the world in June 2017, this type of virus can spread through mail, program Trojan and other forms, using a DOC document carrying a vulnerability. After poisoning, the virus will modify the MBR guiding sector of the system, encrypt the NTFS partition, prevent the machine from starting normally. When the computer is restarted, malicious code will execute before the...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): G06F21/57
CPCG06F21/577G06F2221/034
Inventor 庄毅易平顾晶晶汪自旺
Owner NANJING UNIV OF AERONAUTICS & ASTRONAUTICS
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap