| TCG命令验证协议的改进方法 |
| |
| 引用本文: | 康新振,王震宇,徐锐. TCG命令验证协议的改进方法[J]. 计算机工程, 2008, 34(22): 159-161 |
| |
| 作者姓名: | 康新振 王震宇 徐锐 |
| |
| 作者单位: | 解放军信息工程大学信息工程学院,郑州,450002 |
| |
| 基金项目: | 国家“863”计划基金资助项目(2007AA01Z483) |
| |
| 摘 要: | 经过分析显示可信计算联盟(TCG)命令验证协议会受到一种基于Dolev-Yao模型的中间人攻击,对系统的可信性和安全性造成影响。针对该攻击,文章提出一种协议改进方法。在改进后的协议中,可信平台模块(TPM)和访问者能对会话状态进行有效的沟通,从而抵御中间人攻击。
|
| 关 键 词: | 可信计算联盟 命令验证协议 中间人 |
| 修稿时间: | |
Improvement Method of TCG Command Validation Protocol |
| |
| KANG Xin-zhen,WANG Zhen-yu,XU Rui. Improvement Method of TCG Command Validation Protocol[J]. Computer Engineering, 2008, 34(22): 159-161 |
| |
| Authors: | KANG Xin-zhen WANG Zhen-yu XU Rui |
| |
| Affiliation: | (Institute of Information Engineering, PLA Information Engineering University, Zhengzhou 450002) |
| |
| Abstract: | This paper shows that the Trusted Computing Group(TCG) command validation protocols are exposed to a Dolev-Yao Man in The Middle(MiTM) attack, which will tamper with the security and the trustworthiness of the entire system. In order to avoid such attack, this paper proposes a countermeasure which makes an effective way through which the caller and TPM can well understand the session state of each other. |
| |
| Keywords: | Trusted Computing Group(TCG) command validation protocols Man in The Middle(MiTM) |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机工程》浏览原始摘要信息 |
|
点击此处可从《计算机工程》下载免费的PDF全文 |
