中国科学院软件研究所机构知识库
Advanced  
ISCAS OpenIR  > 软件所图书馆  > 期刊论文
Title:
基于Trustzone的强安全需求环境下可信代码执行方案
Alternative Title: A Trustzone-Based Trusted Code Execution with Strong Security Requirements
Author: 张英骏 ; 冯登国 ; 秦宇 ; 杨波
Keyword: 白名单 ; 可信代码执行 ; Trustzone技术 ; 可信执行环境 ; 内核飞地 ; 平台状态证明
Source: 计算机研究与发展
Issued Date: 2015
Volume: 52, Issue:10, Pages:2224-2238
Indexed Type: CSCD
Department: 张英骏, 中国科学院软件研究所可信计算与信息保障实验室, 北京 100190, 中国;秦宇, 中国科学院软件研究所可信计算与信息保障实验室, 北京 100190, 中国;杨波, 中国科学院软件研究所可信计算与信息保障实验室, 北京 100190, 中国;冯登国, 中国科学院软件研究所可信计算与信息保障实验室, 计算机科学国家重点实验室, 北京 100190, 中国;
Abstract: 针对工业4.0等具有强安全需求、计算功能相对固定的新型信息化应用场景,基于白名单思想提出了1种移动嵌入式平台可信代码执行方案.利用ARM Trustzone硬件隔离技术构建可信执行环境,结合ARM虚拟内存保护机制,构造内核飞地,确保系统监控模块无法被不可信内核篡改或绕过.以此为基础 为可信进程提供可执行文件完整性、运行时代码完整性、控制流完整性3种层次的白名单保护,确保设备只能执行符合白名单策略的授权代码.通过构建通信客户端 进程与Trustzone安全世界的安全共享内存区,利用Trustzone对外设中断事件的控制能力构建可信时钟中断源,确保Trustzone安全世 界与中控服务器通信的隐私性、不可屏蔽性.在此基础上设计安全的白名单更新与平台状态证明协议.在真实设备上实现了原型系统,实验结果证明了该方案的安全 性和较为理想的运行效率.
English Abstract: We propose a secure scheme for trusted code execution on mobile embedded devices based on the idea of program whitelist, which is focus on the application scenarios with strong security requirements and fixed calculation functions, such as industrial 4.0 and "bring your own device". We leverage the trusted execution environment provided by ARM Trustzone and the virtual memory protection mechanism of ARM to build an enclave in the OS kernel's address space, which cannot be tampered by the untrusted OS kernel itself. Some monitor functions are placed in the enclave to provide integrity protection for executable files, runtime code and runtime control flow of trusted processes, ensuring that only authorized code complying with the whitelist strategy can be executed on target devices. The sheme also enhances the security for communications between the target devices and the center control server by building secure shared memory areas between communication client processes and Trustzone secure world, and by building a trusted timer interrupt source in Trustzone secure world. Secure protocols for whitelist update and platform status attestation are proposed based on these security enhancements. We implement the prototype system on real Trustzone-enable hardware devices. The experimental results show that our scheme achieves ideal usability, security and efficiency.
Language: 中文
Citation statistics:
Content Type: 期刊论文
URI: http://ir.iscas.ac.cn/handle/311060/17403
Appears in Collections:软件所图书馆_期刊论文

Files in This Item:
File Name/ File Size Content Type Version Access License
基于Trustzone的强安全需求环境下可信代码执行方案.pdf(3299KB)----限制开放 联系获取全文

Recommended Citation:
张英骏,冯登国,秦宇,等. 基于Trustzone的强安全需求环境下可信代码执行方案[J]. 计算机研究与发展,2015-01-01,52(10):2224-2238.
Service
Recommend this item
Sava as my favorate item
Show this item's statistics
Export Endnote File
Google Scholar
Similar articles in Google Scholar
[张英骏]'s Articles
[冯登国]'s Articles
[秦宇]'s Articles
CSDL cross search
Similar articles in CSDL Cross Search
[张英骏]‘s Articles
[冯登国]‘s Articles
[秦宇]‘s Articles
Related Copyright Policies
Null
Social Bookmarking
Add to CiteULike Add to Connotea Add to Del.icio.us Add to Digg Add to Reddit
所有评论 (0)
暂无评论
 
评注功能仅针对注册用户开放,请您登录
您对该条目有什么异议,请填写以下表单,管理员会尽快联系您。
内 容:
Email:  *
单位:
验证码:   刷新
您在IR的使用过程中有什么好的想法或者建议可以反馈给我们。
标 题:
 *
内 容:
Email:  *
验证码:   刷新

Items in IR are protected by copyright, with all rights reserved, unless otherwise indicated.

 

 

Valid XHTML 1.0!
Copyright © 2007-2019  中国科学院软件研究所 - Feedback
Powered by CSpace