移动智能终端平台基于行为的远程证明方案

移动智能终端平台集通信、社交、网上购物、娱乐等众多功能于一身，恶意程序对相关服务的破坏可能威胁到用户财产和个人隐私的安全. 远程证明是可信计算的核心功能之一，它使得移动智能终端能向远程服务提供方证明平台运行状态的安全性. 传统的远程证明方案主要应用于计算机平台，无法很好的适应软件频繁更新、多方服务共同运行的移动智能终端环境. 针对移动智能终端环境的特点，本文设计了一种基于行为的远程证明方案，通过软件开发人员定义软件行为列表，终端系统强制实施行为限制，服务提供方自定义策略对终端环境进行验证的方式，满足了服务提供方保障其服务安全运行的需求. 方案原型的实现和评估表明本文方案兼具较强的安全能力和较高的性能.

Behavior-Based Remote Attestation for Mobile Platforms

Mobile intelligent terminal platform combines telephone communication, social contact, online shopping and many other functions in one, the destruction of related services by malicious software could undermine the safety of personal privacy and property. Remote attestation, which is a core function of trusted computing, provides a scheme to allow mobile intelligent terminal to assure the secure running state to remote service provider. Traditional remote attestation model is mainly used in computer platform, which is unable to adapt to the environment of smart device where software updates frequently and works with many different service running together. To address on these issues, this paper presents a new behavior-based attestation model for smart device. Way from software developers to define behavior limitation, OS to enforce the limitation, service provider to custom strategy to attest smart device, successfully meets the requirement that corresponds service and should run in a secure environment. The implementation and evaluation of the model prototype shows that the model has strong security capabilities as well as efficiency.