基于TrustZone的智能手機安全技術(shù)研究與實現(xiàn)
[Abstract]:Intelligent terminals play a very important role in different scenes of life and work, and more users store them in their personal privacy. The problem of ensuring data security has become particularly prominent. Users often use the corresponding password to verify the identity to prevent the accidental occurrence of data leakage. However, in order to improve the security intensity of passwords, users have to remember complex passwords and execute frequent password inputs, which greatly affects the user experience. However, with the rapid application and popularization of biometric technology, its convenient and fast characteristics have been widely recognized. For example, fingerprint identification technology is rapidly applied to the field of intelligent terminals, replacing the traditional password verification method, using identification comparison to the user's fingerprint information to achieve secure and fast authentication behavior. Therefore, the problem of how to ensure the security of fingerprint recognition and ensure the safety and reliability of the recognition process is becoming more and more prominent. The concept of a trusted execution environment (Trusted Execution Environment,TEE) is designed to provide a secure execution environment for trusted applications. The concept of secure execution environment can be implemented from three mechanisms, including TXT of Intel and SVM of AMD, which can provide secure execution environment; ARM Trust Zone security technology, and provide isolation mechanism of non-secure area and secure area directly on CPU. Hypervisor/VMM virtualization mechanism, which provides isolation between secure and insecure applications. ARM processor, which is widely used in embedded platform, provides a security extension mechanism of Trust Zone, which divides SOC soft and hard resources into trusted execution environment for operating key resources and common execution environment for operating other resources (Rich Execution Environment,REE). The purpose of this paper is to build a security framework based on processor hardware architecture to ensure that devices resist many potential threats. The purpose of this paper is to solve many security problems in the field of intelligent terminal. Combined with ARM Trust Zone security extension technology, and according to the idea of fingerprint recognition based on biological characteristics, a fingerprint recognition security framework based on Trust Zone is proposed. It provides a trusted execution environment for fingerprint identification applications, prevents attacks by potential malicious programs to ensure the security of fingerprint identification process, and at the same time, in order to ensure the security of fingerprint information, Provide Trust Zone protected keys for fingerprint data and feature security encryption to ensure that they are not stolen. In addition, the secure transmission channel and communication protocol of fingerprint data are designed and implemented to ensure the security of fingerprint transmission process. Finally, a prototype system is designed and implemented, and the effectiveness of the scheme is verified by experiments. The experimental results also prove the feasibility of the proposed technology and method.
【學位授予單位】:電子科技大學
【學位級別】:碩士
【學位授予年份】:2016
【分類號】:TN929.53
【相似文獻】
相關(guān)期刊論文 前3條
1 溫研;劉波;王懷民;;基于本地虛擬化技術(shù)的安全虛擬執(zhí)行環(huán)境[J];計算機工程與科學;2008年04期
2 敬軍;郝福珍;徐東華;;國產(chǎn)自主平臺下可信執(zhí)行環(huán)境的設(shè)計與實現(xiàn)[J];計算機工程與設(shè)計;2012年10期
3 ;[J];;年期
相關(guān)會議論文 前1條
1 李亞;康健;李習彬;;政策實驗室:政策執(zhí)行環(huán)境的模擬系統(tǒng)[A];西部開發(fā)與系統(tǒng)工程——中國系統(tǒng)工程學會第12屆年會論文集[C];2002年
相關(guān)重要報紙文章 前10條
1 本報記者 李旭陽;構(gòu)建移動終端可信執(zhí)行環(huán)境[N];計算機世界;2014年
2 山東省東營市中級人民法院 李貫英 山東省東營市東營區(qū)人民法院 王麗;依法協(xié)助執(zhí)行 優(yōu)化執(zhí)行環(huán)境[N];人民法院報;2013年
3 ;金華法院執(zhí)行環(huán)境專項整治出成效[N];人民法院報;2003年
4 岳躍國;執(zhí)行環(huán)境標準豈容玩貓膩?[N];中國環(huán)境報;2014年
5 記者 黃獻安;浙江不斷優(yōu)化執(zhí)行環(huán)境[N];人民法院報;2004年
6 記者 張寬明 通訊員 晏祥龍;榮辱觀教育優(yōu)化宿遷執(zhí)行環(huán)境[N];人民法院報;2006年
7 本報記者 張羽馨;淮安:外抓執(zhí)行環(huán)境 內(nèi)抓規(guī)范管理[N];江蘇法制報;2006年
8 記者 趙向南 通訊員 金俊賢;俺村街道不比城里差[N];山西日報;2003年
9 住房和城鄉(xiāng)建設(shè)部副部長 齊驥;健全制度 加強配合 創(chuàng)造良好執(zhí)行環(huán)境[N];人民法院報;2008年
10 記者 黃獻安 通訊員 余建華;浙江提出提高六個方面能力[N];人民法院報;2005年
相關(guān)碩士學位論文 前6條
1 張亞飛;基于可信執(zhí)行環(huán)境的智能密碼鑰匙設(shè)計與實現(xiàn)[D];西安電子科技大學;2014年
2 劉志偉;基于TrustZone的智能手機安全技術(shù)研究與實現(xiàn)[D];電子科技大學;2016年
3 黃澤群;面向融合的業(yè)務(wù)平臺中業(yè)務(wù)執(zhí)行環(huán)境的優(yōu)化設(shè)計與實現(xiàn)[D];北京郵電大學;2008年
4 王熙友;ARM TrustZone安全隔離技術(shù)研究與應(yīng)用[D];電子科技大學;2013年
5 龔濤;基于SOA的泛在多節(jié)點業(yè)務(wù)協(xié)同執(zhí)行環(huán)境的研究與實現(xiàn)[D];北京郵電大學;2013年
6 肖漢波;CPU/GPU異構(gòu)多核虛擬執(zhí)行環(huán)境框架的設(shè)計與實現(xiàn)[D];上海交通大學;2010年
,本文編號:2478423
本文鏈接:http://sikaile.net/kejilunwen/xinxigongchenglunwen/2478423.html