|
|||||
|
|
| 基于UEFI的可信BIOS研究与实现 | |
| 引用本文: | 周振柳,李铭,翟伟斌,许榕生.基于UEFI的可信BIOS研究与实现[J].计算机工程,2008,34(8):174-176. |
| 作者姓名: | 周振柳 李铭 翟伟斌 许榕生 |
| 作者单位: | 1. 中国科学院高能物理研究所计算中心,北京,100049;沈阳航空工业学院计算机学院,沈阳,110034 2. 中国电子科技集团信息化工程总体研究中心,北京,100083 3. 中国科学院高能物理研究所计算中心,北京,100049 |
| 基金项目: | 信息产业部电子信息产业发展基金 , 北京市教委科技发展计划项目 |
| 摘 要: | 分析固件基本输入输出系统(BIOS)的安全需求,定义了可信BIOS概念。基于UEFI规范和可信计算机制设计UTBIOS体系结构。UTBIOS的实现以新一代符合UEFI规范的BIOS产品为基础,使用可信测量根核对BIOS运行和系统引导过程中各部件进行可信测量,构建操作系统运行前的可信链,讨论可信测量对BIOS引导过程的性能影响。 |
| 关 键 词: | 可信计算 可信测量 基本输入输出系统 |
| 文章编号: | 1000-3428(2008)08-0174-03 |
| 修稿时间: | 2007年4月30日 |
Research and Implementation of Trusted BIOS Based on UEFI |
|
| ZHOU Zhen-liu,LI Ming,ZHAI Wei-bin,XU Rong-sheng.Research and Implementation of Trusted BIOS Based on UEFI[J].Computer Engineering,2008,34(8):174-176. | |
| Authors: | ZHOU Zhen-liu LI Ming ZHAI Wei-bin XU Rong-sheng |
| Affiliation: | (1. Computing Center, Institute of High Energy Physics, Chinese Academy Scences, Beijing 100049;2. School of Computer Science, Shenyang Institute of Aeronautical Engineering, Shenyang 110034;3. Center of Information System Architecture Research, China Electron Technology Group Corporation, Beijing 100083) |
| Abstract: | This paper analyzes security threats of firmware BIOS, and defines the concept of trusted BIOS. The architecture of UTBIOS, which is based on UEFI specification and trusted computing mechanism, is developed. To construct Pre-OS chain of trust, CRTM embedded in UTBIOS is used to measure the trustworthiness of entities in different phases of bootstrap. Implementation of UTBIOS based on UEFI BIOS product is described and the performance of trusted measurement is analyzed. |
| Keywords: | trusted computing trusted measurement Basic Input Output System(BIOS) |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! | |
| 点击此处可从《计算机工程》浏览原始摘要信息 | |
| 点击此处可从《计算机工程》下载全文 | |