| 太行安全BIOS可信体系结构与实现研究 |
| |
| 引用本文: | 周振柳,李铭,许榕生,宋东生.太行安全BIOS可信体系结构与实现研究[J].计算机工程与应用,2008,44(18):76-79. |
| |
| 作者姓名: | 周振柳 李铭 许榕生 宋东生 |
| |
| 作者单位: | 1.中国科学院 高能物理研究所 计算中心,北京 100049 2.中国电子科技集团 信息化工程总体研究中心,北京 100083 3.沈阳航空工业学院,沈阳 110034 |
| |
| 基金项目: | 信产部电子信息产业发展基金
,
北京市教委科技发展计划项目 |
| |
| 摘 要: | 分析了可信BIOS的安全需求,提出一种可信BIOS体系结构。使用消息摘要和数字签名技术验证系统引导阶段实体的完整性和真实性,构建了操作系统运行前的信任链。介绍了太行安全BIOS的可信部件、执行流程及其实现方法,讨论了可信测量对BIOS引导过程的性能影响。
|
| 关 键 词: | 可信BIOS 可信测量 安全需求 信任链 |
| 文章编号: | 1002-8331(2008)18-076-04 |
| 收稿时间: | 2007-9-20 |
| 修稿时间: | 2007年9月20日 |
Research on trusted architecture and implementation of Taihang secure BIOS |
| |
| ZHOU Zhen-liu,LI Ming,XU Rong-sheng,SONG Dong-sheng.Research on trusted architecture and implementation of Taihang secure BIOS[J].Computer Engineering and Applications,2008,44(18):76-79. |
| |
| Authors: | ZHOU Zhen-liu LI Ming XU Rong-sheng SONG Dong-sheng |
| |
| Affiliation: | 1.Computing Center,Institute of High Energy Physics,Chinese Academy of Sciences,Beijing 100049,China 2.Center of Information System Architecture Research,CETC,Beijing 100083,China 3.Shenyang Institute of Aeronautical Engineering,Shenyang 110034,China |
| |
| Abstract: | Security requirements of trusted BIOS are analyzed,and architecture of trusted BIOS is developed in this paper.To construct Pre-OS chain of trust,message digest and digital signature are used to verify integrity and authenticity of entities in different phases of bootstrap.Trusted components,workflow and methods of implementation of Taihang secure BIOS are introduced in detail.Performance of trusted measurement is also analyzed at the end. |
| |
| Keywords: | trusted BIOS trusted measurement security requirements chain of trust |
| 本文献已被 CNKI 万方数据 等数据库收录! |
| 点击此处可从《计算机工程与应用》浏览原始摘要信息 |
|
点击此处可从《计算机工程与应用》下载全文 |
