| Linux可信启动的设计与实现 |
| |
| 引用本文: | 方艳湘,黄涛.Linux可信启动的设计与实现[J].计算机工程,2006,32(9):51-53. |
| |
| 作者姓名: | 方艳湘 黄涛 |
| |
| 作者单位: | 1. 南开大学信息科学技术学院,天津,300071
2. 解放军信息工程大学电子技术学院,郑州,450052 |
| |
| 摘 要: | 可信计算组织(TCG)提出了可信计算规范,其主要思想就是通过度量和保障组成平台的各组件的完整性来保证平台及应用的安会。启动过程是操作系统的基础,因此实施可信启动对操作系统意义重大。基于Linux启动的现实条件,结合TCG规范中可信度量和可信链的思想,利用TPM提供的可信计算和保护存储功能,设计了Linux可信启动过程TSPL,并实现了原型。设计中充分考虑到启动过程的复杂性和度黾数据的多样性,不仅度量了程序代码,还对影响执行程序行为的配置文件和环境数据进行了度量。
|
| 关 键 词: | 可信计算组织 信任根 信任链 可信引导 |
| 文章编号: | 1000-3428(2006)09-0051-03 |
| 收稿时间: | 12 6 2005 12:00AM |
| 修稿时间: | 2005-12-06 |
Design and Implementation of Trusted Startup Process for Linux |
| |
| FANG Yanxiang,HUANG Tao.Design and Implementation of Trusted Startup Process for Linux[J].Computer Engineering,2006,32(9):51-53. |
| |
| Authors: | FANG Yanxiang HUANG Tao |
| |
| Affiliation: | 1. College of Information Technical Science, Nankai University, Tianjin 300071; 2, College of Electronic Technology, PLA Information Engineering University, Zhengzhou 450052 |
| |
| Abstract: | TCG releases the trusted computing specification,the main idea of which is to enforce the security of the platform and the applications on it by confirming integrity of the components comprise it.Since startup process is the basement of an OS,implementation of trusted startup process is of much significance.Having combined the reality condition of Linux and the concept of chain of trust and trust measurement,this paper designs the trusted startup process of Linux(TSPL),and implements a prototype.By fully considering the complexity and variety of measurement data in the Linux startup process,it measures not only the program data but also the data of the configure file and environment in the design. |
| |
| Keywords: | TPM |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
