| 一种针对TPM的抗重放攻击方案 |
| |
| 引用本文: | 周雅洁,陈萍,张晶伟,关焕梅.一种针对TPM的抗重放攻击方案[J].计算机工程与应用,2007,43(22):120-121. |
| |
| 作者姓名: | 周雅洁 陈萍 张晶伟 关焕梅 |
| |
| 作者单位: | 武汉大学,计算机中心,武汉,430072 |
| |
| 摘 要: | 可信平台模块(Trusted Platform Module,TPM)是可信计算技术的核心。可信计算平台需要TPM的可信测量能力、可信存储能力和可信报告能力,向用户证实平台是可信的。然而当前人们主要关心TPM的实现以及其上的应用开发,却很少讨论TPM本身的安全性。这样一方面很难使人们相信TPM本身是安全的,另一方面也不能很好的将TPM应用到安全领域中。对用户和TPM交互时所遵循的重要协议——对象无关授权协议OIAP进行分析,证明了该协议会受到重放攻击并提出了相应的解决方案。
|
| 关 键 词: | 可信平台模块 对象无关授权协议 重放攻击 |
| 文章编号: | 1002-8331(2007)22-0120-02 |
| 修稿时间: | 2007-03 |
Solution of anti-replay attack in TPM |
| |
| ZHOU Ya-jie,CHEN Ping,ZHANG Jing-wei,GUAN Huan-mei.Solution of anti-replay attack in TPM[J].Computer Engineering and Applications,2007,43(22):120-121. |
| |
| Authors: | ZHOU Ya-jie CHEN Ping ZHANG Jing-wei GUAN Huan-mei |
| |
| Affiliation: | Computer Center, Wuhan University, Wuhan 430072, China |
| |
| Abstract: | The Trusted Platform Module(TPM) is the core of the the trusted computing technology.The trusted computing platforms need to be verified trustful by functionality of identity,measurement,protected storage of the TPM.However,the people take more care of the realization and exploitation of the TPM than the security of the TPM itself and this hampers the application of the TPM in the security technology.We prove that the object-independent authorization protocol is exposed to replay attack and propose a countermeasure to avoid this attack. |
| |
| Keywords: | Trusted Platform Module(TPM) object-independent authorization protocol replay attack |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机工程与应用》浏览原始摘要信息 |
|
点击此处可从《计算机工程与应用》下载全文 |
|
