發(fā)布時間：2018-06-24 09:14

  本文選題：TrustZone + 可信執(zhí)行環(huán)境��； 參考：《計算機研究與發(fā)展》2017年10期

【摘要】：針對BYOD(bring your own device)、移動云計算等兼具強安全性、高開放性需求的新型應用場景,提出了一種移動嵌入式平臺敏感應用防護方案.為滿足強安全性需求,方案基于ARM TrustZone硬件隔離技術構建可信執(zhí)行環(huán)境,即使在整個操作系統(tǒng)內(nèi)核被攻破的情況下仍能保證敏感應用的安全.為滿足高開放性需求,方案實現(xiàn)了傳統(tǒng)TrustZone安全方案不具備的兩大優(yōu)勢.首先,將TrustZone保護域擴展至普通世界,安全世界不再實現(xiàn)具體的敏感應用,而只實現(xiàn)一個輕量級監(jiān)控模塊用以監(jiān)控普通世界內(nèi)核的行為.因此整個系統(tǒng)可信計算基不隨敏感應用數(shù)量的增加而增大,減少了其可攻擊面和潛在漏洞。其次,監(jiān)控模塊確保內(nèi)核為這些敏感應用提供安全的系統(tǒng)服務,從而為滿足開放性需求提供關鍵功能支持,例如提供標準系統(tǒng)調用接口、敏感應用動態(tài)部署和加載等.最后,方案提出了內(nèi)核主動證明機制,要求內(nèi)核主動提供關鍵信息協(xié)助監(jiān)控模塊驗證其自身行為,有效提高了系統(tǒng)運行效率.在真實設備上實現(xiàn)了原型系統(tǒng),實驗結果證明了該方案的安全性和較為理想的運行效率.
[Abstract]:Aiming at the new application scenarios of BYOD (bring your own device), mobile cloud computing with strong security and high openness, a mobile embedded platform sensitive application protection scheme is proposed. In order to meet the requirement of strong security, the scheme builds a trusted execution environment based on arm TrustZone hardware isolation technology, which can guarantee the security of sensitive applications even if the whole operating system kernel is broken. In order to meet the requirement of high openness, the scheme realizes two advantages that the traditional TrustZone security scheme does not have. Firstly, the TrustZone protection domain is extended to the ordinary world. Instead of implementing specific sensitive applications, the secure world only implements a lightweight monitoring module to monitor the behavior of the common world kernel. Therefore, the trusted computing base of the whole system does not increase with the increase of the number of sensitive applications, which reduces its attack surface and potential vulnerabilities. Secondly, the monitoring module ensures that the kernel provides secure system services for these sensitive applications, thus providing critical functional support to meet the open requirements, such as providing standard system call interfaces, dynamic deployment and loading of sensitive applications, and so on. Finally, the scheme proposes a kernel active certification mechanism, which requires the kernel to provide key information to assist the monitoring module to verify its own behavior, which effectively improves the efficiency of the system. The prototype system is implemented on real equipment. The experimental results show that the proposed scheme is safe and efficient.
【作者單位】： 中國科學院軟件研究所可信計算與信息保障實驗室;中國科學院大學;計算機科學國家重點實驗室(中國科學院軟件研究所);
【基金】：國家自然科學基金項目(91118006,61402455,61602455)~~
【分類號】：TP309

【相似文獻】

相關會議論文 前1條

1 焦雪;蔣海琴;張艷華;鐘穎穎;;高速公路計重系統(tǒng)雷電災害分析與防護技術[A];第28屆中國氣象學會年會——S13雷電物理、監(jiān)測預警和防護[C];2011年

，

本文編號：2060992