Secure transmission method for kernel module parameters
A kernel module and security technology, applied in digital transmission systems, secure communication devices, and key distribution, can solve the problems of increasing kernel module parameter leakage, being tampered and being attacked, etc., achieving high security, few implementation steps, and execution efficiency. high effect
Pending Publication Date: 2022-03-04
FUJIAN NORCA TECH
View PDF6 Cites 0 Cited by
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
Therefore, it is inevitable that the parameters of the kernel module can be read and modified by any user who logs in to the system, which increases the risk of kernel module parameters being leaked, tampered with, or attacked
Method used
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View moreImage
Smart Image Click on the blue labels to locate them in the text.
Smart ImageViewing Examples
Examples
Experimental program
Comparison scheme
Effect test
Embodiment Construction
[0061] The technical solutions and beneficial effects of the present invention will be described in detail below in conjunction with the accompanying drawings.
[0062] Such as figure 1 As shown, the present invention provides a method for safely transferring kernel module parameters, comprising the following steps:
[0063] Step 1: Generate two pairs of keys based on SM2, one pair is issued to the kernel module, which is recorded as the first key pair; one pair is issued to the application program, which is recorded as the second key pair; the first key pair and The public and private keys of the second key pair are respectively recorded as the first public key, the first private key, the second public key, and the second private key;
[0064] Step 2, securely write the first private key and the second public key into the kernel module in the form of static variables, and securely write the second private key and the first public key into the application program in the form ...
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More PUM
Login to View More Abstract
The invention discloses a kernel module parameter secure transmission method, which comprises the following steps of: firstly, generating two pairs of secret keys based on SM2, and issuing public keys and private keys to a kernel module and an application program in a crossed manner; a set of parameter safety transmission mechanism is designed based on SM2 and ECDH, and confidentiality, authenticity and integrity of parameters in the transmission process are guaranteed; an SM2 secret key is preset in the kernel module and the corresponding application program, and bidirectional identity authentication of the kernel module and the application program is achieved; on the basis of a parameter encryption key when parameters are transmitted between an ECDH negotiation kernel module and an application program, a public key of key negotiation is used as secret information of identity authentication, and a method for organically combining an identity authentication process and a key negotiation process is provided on the basis of a digital digest. According to the method, bidirectional authentication of the kernel module and the application program can be realized, and the kernel module and the application program can negotiate a session key to encrypt participation, so that confidentiality, authenticity and integrity of parameters in a transmission process are ensured.
Description
technical field [0001] The invention relates to a method for safe transmission of kernel module parameters. Background technique [0002] The kernel module is a socket provided by the operating system kernel to the outside. Its full name is the dynamic loadable kernel module (LoadableKernelModule, LKM), which usually consists of a set of functions and data structures, used to implement a file system, a driver or other Programs for the functions of the upper layers of the kernel. The transfer of data flow and calculation is realized through function calls between kernel modules and core functions. Linuxkernel provides a mechanism for passing command line parameters through module_param(), which allows the driver to declare parameters. The usage of parameters is like global variables. Specify the corresponding value for the parameter when the system starts or the kernel module is mounted. If the parameters need to be updated after the kernel module is mounted or the user nee...
Claims
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More Application Information
Patent Timeline
Login to View More Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/08H04L9/06H04L9/14H04L9/32H04L9/40
CPCH04L9/0869H04L9/0838H04L9/0643H04L9/14H04L9/3236H04L63/0869H04L63/0428
Inventor 陈明志翁才杰许春耀张瑞赵逊飞占仕勋阮莉丽郑绍华
Owner FUJIAN NORCA TECH