Dual-system trusted computing system and method

Abstract

The invention discloses a dual-system trusted computing system and method. The system comprises a trusted management center and at least one dual-system trusted computing node connected with the trusted management center, the dual-system trusted computing node comprises a computing subsystem and a protection subsystem which are parallel to each other, a security isolation mechanism is arranged between the computing subsystem and the protection subsystem, and interaction is carried out through a special access channel; wherein the computing subsystem is used for executing a computing task, theprotection subsystem is used for measuring and controlling the computing subsystem according to a credible strategy in the credible management center and sending a measurement record to the credible management center, and the credible management center is used for carrying out statistical analysis on the measurement record. According to the system and the method provided by the invention, active safety protection is carried out while calculation is carried out through the parallel calculation subsystem and the protection subsystem, so that calculation tasks are not interfered and damaged, andvarious known and unknown attacks can be resisted.

Description

technical field [0001] The invention relates to the field of information security, in particular to a dual-system trusted computing system and method. Background technique [0002] China is the largest network market in the world. With the popularization of the Internet, network security incidents have skyrocketed. Adopting the traditional mode of emphasizing computing and ignoring defense will lead to the intrusion of personal computers, the destruction of enterprise production systems, the failure of urban and rural infrastructure, and the destruction of important national information systems, and the impact will be everywhere. With the advent of the 5G network era and the rise of new computing and new applications such as mobile Internet, Internet of Things, cloud computing, big data, and fog computing, the network security situation has become more severe. Traditional systems based on firewalls, intrusion detection, and virus prevention , Vulnerability upgrades represen...

AI Technical Summary

Problems solved by technology

Adopting the traditional mode of emphasizing computing and ignoring defense will lead to the intrusion of personal computers, the destruction of enterprise production systems, the failure of urban and rural infrastructure, and the destruction of important national information systems. The impact will be everywhere.

With the advent of the 5G network era and the rise of new computing and new applications such as mobile Internet, Internet of Things, cloud computing, big data, and fog computing, the network security situation has become more severe. Traditional systems based on firewalls, intrusion detection, and virus prevention , Vulnerability upgrades represented by repairing security protection methods can no longer adapt to the current new situation

[0003] Traditional security protection methods such as firewalls, intrusion detection, and virus prevention are compared and killed based on the content of the signature database that has occurred. Faced with an endless stream of new vulnerabilities and attack methods, they are hard to guard against; Basic security principles may directly lead to leaks by insiders; in addition, traditional security protection methods can be controlled by attackers and become new attack platforms, such as "Prism Gate" which uses firewalls to steal information

Images