| 基于TrustZone的指纹识别安全技术研究与实现 |
| |
| 引用本文: | 杨霞,刘志伟,雷航.基于TrustZone的指纹识别安全技术研究与实现[J].计算机科学,2016,43(7):147-152, 176. |
| |
| 作者姓名: | 杨霞 刘志伟 雷航 |
| |
| 作者单位: | 电子科技大学信息与软件工程学院 成都610054;保密通信重点实验室 成都610041,电子科技大学信息与软件工程学院 成都610054,电子科技大学信息与软件工程学院 成都610054 |
| |
| 基金项目: | 本文受国家核高基重大专项(M1401060112ZX0103301),国家科技支撑计划(2012BAH44F00)资助 |
| |
| 摘 要: | 随着指纹识别技术在智能终端设备中的大量应用,指纹技术本身的安全问题也日益突出。为增强智能终端指纹识别的安全性,借助于ARM TrustZone安全扩展机制,提出了一种基于TrustZone的指纹识别安全保障技术和方法,其为指纹识别程序提供了可信执行环境,以保证其执行过程的安全性并防止恶意程序的攻击。同时,对指纹数据和指纹特征模板进行加密,并将密钥存储在受TrustZone保护的安全区域中以防止被窃取。此外,还实现了指纹数据的安全传输通道,以进一步确保敏感数据传输过程的安全性。最后,设计并实现了一个原型系统来验证所提技术和方法的有效性,实验结果证明所提出的技术和方法是可行的。
|
| 关 键 词: | TrustZone 指纹识别 安全存储 指纹匹配 嵌入式系统 |
| 收稿时间: | 2015/5/28 0:00:00 |
| 修稿时间: | 2015/8/17 0:00:00 |
Research and Implementation of Fingerprint Identification Security Technology Based on ARM TrustZone |
| |
| YANG Xi,LIU Zhi-wei and LEI Hang.Research and Implementation of Fingerprint Identification Security Technology Based on ARM TrustZone[J].Computer Science,2016,43(7):147-152, 176. |
| |
| Authors: | YANG Xi LIU Zhi-wei and LEI Hang |
| |
| Affiliation: | School of Information and Software Engineering,University of Electronic Science and Technology of China,Chengdu 610054,China;Science and Technology on Communication Security Laboratory,Chengdu 610041,China,School of Information and Software Engineering,University of Electronic Science and Technology of China,Chengdu 610054,China and School of Information and Software Engineering,University of Electronic Science and Technology of China,Chengdu 610054,China |
| |
| Abstract: | The security of fingerprint technology itself is becoming increasingly prominent with its wide use in intelligent terminal device.With the security extension mechanism of ARM TrustZone,the technique and method of fingerprint identification security are put forward based on TrustZone to enhance the security of fingerprint identification for intelligent terminals.They provide trusted execution environment for the fingerprint identification program to ensure its safety in executing and prevent malicious code attacks.Meanwhile,the fingerprint data and fingerprint feature template are encrypted,the key is put into the secure area protected by TrustZone in order to prevent it from stealing.In addition,a secure channel for fingerprint data transmission is realized to further ensure the security of sensitive data transmission.At last,a prototype system is designed and implemented to verify the validity of the mentioned technique and method.The experimental results verify that the technique and method proposed in this paper are feasible. |
| |
| Keywords: | TrustZone Fingerprint identification Secure storage Fingerprint matching Embedded system |
|
|
点击此处可从《计算机科学》下载全文 |
|
