| 虚拟化环境中TPM对象访问授权协议分析与改进 |
| |
| 引用本文: | 梁敏,常朝稳.虚拟化环境中TPM对象访问授权协议分析与改进[J].小型微型计算机系统,2012,33(7):1450-1456. |
| |
| 作者姓名: | 梁敏 常朝稳 |
| |
| 作者单位: | 解放军信息工程大学电子技术学院,郑州,450004 |
| |
| 基金项目: | 国家"八六三"高技术研究发展计划项目 |
| |
| 摘 要: | 可信计算的主要功能由TPM完成.TPM的对象访问授权协议是TPM在可信计算平台中安全运行的基础.本文根据TPM对象访问授权模型,在对OIAP和OSAP协议及在虚拟化环境中存在的安全漏洞进行分析的基础上,提出一种新的对象访问授权协议,并通过形式化的安全分析,证明新协议可以解决虚拟域间共享授权数据而引起的安全问题,并能够抵抗重放攻击和中间人攻击.
|
| 关 键 词: | 对象访问授权协议 OIAP OSAP 授权数据 |
Analysis and Improvement of TPM Object Access Authorization Protocol in Virtualization Environment |
| |
| LIANG Min
,
CHANG Chao-wen.Analysis and Improvement of TPM Object Access Authorization Protocol in Virtualization Environment[J].Mini-micro Systems,2012,33(7):1450-1456. |
| |
| Authors: | LIANG Min CHANG Chao-wen |
| |
| Affiliation: | (People′s Liberation Army Information Engineering University,Institute of Electronic Technology,Zhengzhou 450004,China) |
| |
| Abstract: | The main function of trusted computing is done by TPM.The security working of TPM in trusted computing platform is based on the object access authorization protocol of TPM.Based on the object access authorization model for TPM,this paper analyses OIAP and OSAP and their vulnerability in virtualization environment.A new object access authorization protocol is proposed in this paper.Through the formal analysis,the new protocol can be proved to resolve the problem brought by the shared authdata among the virtual domains,and to resist the replay attack and man in the middle attack. |
| |
| Keywords: | object access authorization protocol OIAP OSAP authorization data |
| 本文献已被 CNKI 万方数据 等数据库收录! |
|
