首页 | 本学科首页   官方微博 | 高级检索  
     

操作系统内核的动态可信度量模型
引用本文:辛思远,赵勇,廖建华,王婷. 操作系统内核的动态可信度量模型[J]. 计算机应用, 2012, 32(4): 953-956. DOI: 10.3724/SP.J.1087.2012.00953
作者姓名:辛思远  赵勇  廖建华  王婷
作者单位:1. 信息工程大学 电子技术学院,郑州 450004;2.北京工业大学 计算机学院,北京 1001242. 北京工业大学 计算机学院,北京 1001243. 北京大学 信息科学技术学院,北京 1008714. 65047部队,沈阳 100805
基金项目:国家863计划项目(2009AA01Z437);国家973计划项目(2007CB311100);国家“核高基”科技重大专项(2010ZX01037-001-001)
摘    要:动态可信度量是可信计算的研究热点和难点,针对由操作系统内核动态性所引起的可信度量困难问题,提出一种操作系统内核的动态可信度量模型,使用动态度量变量描述和构建系统动态数据对象及其关系,对内核内存进行实时数据采集,采用语义约束描述内核动态数据的动态完整性,通过语义约束检查验证内核动态数据是否维持其动态完整性。给出了模型的动态度量性质分析与证明,模型能够有效地对操作系统内核的动态数据进行可信度量,识别对内核动态数据的非法篡改。

关 键 词:可信计算  可信度量  动态度量  操作系统内核  远程证明  
收稿时间:2011-10-18
修稿时间:2011-12-14

Dynamic trusted measurement model of operating system kernel
XIN Si-yuan,ZHAO Yong,LIAO Jian-hua,WANG Ting. Dynamic trusted measurement model of operating system kernel[J]. Journal of Computer Applications, 2012, 32(4): 953-956. DOI: 10.3724/SP.J.1087.2012.00953
Authors:XIN Si-yuan  ZHAO Yong  LIAO Jian-hua  WANG Ting
Affiliation:1. Institute of Electronic Technology, Information Engineering University, Zhengzhou Henan 450004,China2. College of Computer Science,Beijing University of Technology,Beijing 100124,China3. School of Electronics Engineering and Computer Science, Peking University, Beijing 100871, China4. Unit 65047 of PLA,Shenyang Liaoning 100805,China
Abstract:Dynamic trusted measurement is a hot and difficult research topic in trusted computing.Concerning the measurement difficulty invoked by the dynamic nature of operating system kernel,a Dynamic Trusted Kernel Measurement(DTKM) model was proposed.Dynamic Measurement Variable(DMV) was presented to describe and construct dynamic data objects and their relations,and the method of semantic constraint was proposed to measure the dynamic integrity of kernel components.In DTKM,the collection of memory data was implemented in real-time,and the dynamic integrity was verified by checking whether the constructed DMV was consistent with semantic constraints which were defined based on the security semantics.The nature analysis and application examples show that DTKM can effectively implement dynamic measurement of the kernel and detect the illegal modification of the kernel dynamic data.
Keywords:trusted computing  trusted measurement  dynamic measurement  operating system kernel  remote attestation
本文献已被 CNKI 等数据库收录!
点击此处可从《计算机应用》浏览原始摘要信息
点击此处可从《计算机应用》下载全文
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号