操作系统内核的动态可信度量模型

doi:10.3724/SP.J.1087.2012.00953

计算机应用 ›› 2012, Vol. 32 ›› Issue (04): 953-956.DOI: 10.3724/SP.J.1087.2012.00953

操作系统内核的动态可信度量模型

辛思远¹,赵勇²,廖建华³,王婷⁴

1. 信息工程大学电子技术学院，郑州 450004；2．北京工业大学计算机学院，北京 100124
2. 北京工业大学计算机学院，北京 100124
3. 北京大学信息科学技术学院，北京 100871
4. 65047部队，沈阳 100805

收稿日期:2011-10-18 修回日期:2011-12-14 发布日期:2012-04-20 出版日期:2012-04-01
通讯作者: 辛思远
作者简介:辛思远（1984-），男，河南三门峡人，博士研究生，主要研究方向：可信计算、操作系统安全；赵勇（1980-），男，山西左权人，讲师，博士，主要研究方向：可信计算；廖建华（1978-），男，江西宁都人，博士研究生，主要研究方向：可信计算；王婷（1982-），女，河南洛阳人，工程师，博士，主要研究方向：访问控制。
基金资助:
国家863计划项目;国家973计划项目;国家“核高基”科技重大专项

Dynamic trusted measurement model of operating system kernel

XIN Si-yuan¹,ZHAO Yong²,LIAO Jian-hua³,WANG Ting⁴

1. Institute of Electronic Technology, Information Engineering University, Zhengzhou Henan 450004，China
2. College of Computer Science，Beijing University of Technology，Beijing 100124，China
3. School of Electronics Engineering and Computer Science, Peking University, Beijing 100871, China
4. Unit 65047 of PLA，Shenyang Liaoning 100805，China

Received:2011-10-18 Revised:2011-12-14 Online:2012-04-20 Published:2012-04-01
Contact: XIN Si-yuan

摘要/Abstract

摘要： 动态可信度量是可信计算的研究热点和难点，针对由操作系统内核动态性所引起的可信度量困难问题，提出一种操作系统内核的动态可信度量模型，使用动态度量变量描述和构建系统动态数据对象及其关系，对内核内存进行实时数据采集，采用语义约束描述内核动态数据的动态完整性，通过语义约束检查验证内核动态数据是否维持其动态完整性。给出了模型的动态度量性质分析与证明，模型能够有效地对操作系统内核的动态数据进行可信度量，识别对内核动态数据的非法篡改。

关键词: 可信计算, 可信度量, 动态度量, 操作系统内核, 远程证明

Abstract: Dynamic trusted measurement is a hot and difficult research topic in trusted computing. Concerning the measurement difficulty invoked by the dynamic nature of operating system kernel, a Dynamic Trusted Kernel Measurement (DTKM) model was proposed. Dynamic Measurement Variable (DMV) was presented to describe and construct dynamic data objects and their relations, and the method of semantic constraint was proposed to measure the dynamic integrity of kernel components. In DTKM, the collection of memory data was implemented in real-time, and the dynamic integrity was verified by checking whether the constructed DMV was consistent with semantic constraints which were defined based on the security semantics. The nature analysis and application examples show that DTKM can effectively implement dynamic measurement of the kernel and detect the illegal modification of the kernel dynamic data.

Key words: trusted computing, trusted measurement, dynamic measurement, operating system kernel, remote attestation

辛思远赵勇廖建华王婷. 操作系统内核的动态可信度量模型[J]. 计算机应用, 2012, 32(04): 953-956.

XIN Si-yuan ZHAO Yong LIAO Jian-hua WANG Ting. Dynamic trusted measurement model of operating system kernel[J]. Journal of Computer Applications, 2012, 32(04): 953-956.

参考文献

［1］刘孜文,冯登国.基于可信计算的动态完整性度量架构［J］.电子与信息学报,2010,32(4): 874-879. ［2］沈昌祥,张焕国,冯登国,等.信息安全综述［J］.中国科学：E辑, 2007,37(2):129-150. ［3］ SAILER R, ZHANG X L, JAEGER T,et al. Design and implementation of a TCG-based integrity measurement architecture［C］// Proceedings of the l3th Usenix Security Symposium. Berkeley: USENIX,2004:223-238. ［4］ PORITZ J,SCHUNTER M,HERREWEGHEN E V, et al. Property attestation-scalable and privacy friendly security assessment of peer computers,RZ-3548［R］,New York:IBM,2004. ［5］ SADEGHI A,STLIBLE C. Property-based attestation for computing platforms：Caring about properties,not mechanisms［C］// Proceedings of the New Security Paradigms Workshop. New York:ACM,2004:67-77. ［6］ MICHAEL B, DORNSEIF M, KLEIN C N. FireWire: All your memory are belong to us［EB/OL］.［2011-08-10］. http://md.hudora.de/presentations/#firewire-cansecwest. ［7］ SERGEY B, NIHAL D C, EVAN S, et al.TOCTOU, traps, and trusted computing［C］ // Proceedings of Trust 2008, LNCS 4968. Berlin: Springer, 2008:14-32. ［8］ NUCK L P, TIMOTHY F, JESUS M, et al. Copilot—a coprocessor-based kernel runtime integrity monitor［C］// Proceedings of the 13th Usenix Security Symposium, Berkeley: USENIX,2004:179-194. ［9］MARTIN A, MIHAI B, ULFAR E, et al.Control-flow integrity［C］// Proceedings of the 12th ACM Conference on Computer and Communications Security. New York:ACM,2005: 340-353. ［10］ NICK L P, MICHAEL H. Automated detection of persistent kernel control-flow attacks［C］// Proceedings of the 14th ACM Conference on Computer and Communications Security. New York:ACM,2007: 103-115. ［11］ SHOU C, JUN X, EMRE C S, et al. Non-control-data attacks are realistic threats［C］// Proceedings of the 14th USENIX Security Symposium. Berkeley: USENIX,2005:177-192. ［12］ PETER A L，PERRY W W，AARON P, et al.Linux kernel integrity measurement using contextual inspection［C］// Proceedings of the 2007 ACM Workshop on Scalable Trusted Computing.New York:ACM,2007:21-29. ［13］ ARVIND S, ADRIAN P, LEENDERT V D, et al.SWATT: SoftWare-based attestation for embedded devices［C］// Proceedings of 2004 IEEE Symposium on Security and Privacy. Oakland:IEEE,2004:272-282. ［14］ ARVIND S, MARK L, NING Q, et al.SecVisor: A tiny hypervisor to guarantee lifetime kernel code integrity for commodity OSes［C］// SOSP:Proceedings of the ACM Symposium on Operating Systems Principles.New York:ACM,2007: 335-350. ［15］ RYAN R,XUXIAN J,DONGYAN X. Guest-transparent prevention of kernel rootkits with VMM-based memory shadowing［C］// Proceedings of the 11th International Symposium on Recent Advances in Intrusion Detection, LNCS 5230. Berlin:Springer,2008:1-20.

[1]	肖跃雷, 邓小凡. 基于证书的有线局域网安全关联方案改进与分析[J]. 计算机应用, 2021, 41(7): 1970-1976.
[2]	张学旺, 殷梓杰, 冯家琦, 叶财金, 付康. 基于区块链与可信计算的数据交易方案[J]. 计算机应用, 2021, 41(4): 939-944.
[3]	蔡梦娟, 陈兴蜀, 金鑫, 赵成, 殷明勇. 基于硬件虚拟化的虚拟机进程代码分页式度量方法[J]. 计算机应用, 2018, 38(2): 305-309.
[4]	齐能, 谭良. 具有瀑布特征的可信虚拟平台信任链模型[J]. 计算机应用, 2018, 38(2): 327-336.
[5]	徐明迪, 高杨, 高雪原, 张帆. 满足对应性属性的平台配置证明[J]. 计算机应用, 2018, 38(2): 337-342.
[6]	肖跃雷, 武君胜, 朱志祥. 基于预共享密钥的LAN安全关联方案改进与分析[J]. 计算机应用, 2018, 38(11): 3246-3251.
[7]	孙亮, 陈小春, 郑树剑, 刘赢. 基于固件的终端位置管理系统研究与应用[J]. 计算机应用, 2017, 37(2): 417-421.
[8]	张鑫, 杨晓元, 朱率率. 移动网络可信匿名认证协议[J]. 计算机应用, 2016, 36(8): 2231-2235.
[9]	翁晓康张平王炜朱毅. 基于非平衡哈希树的平台完整性远程验证机制[J]. 计算机应用, 2014, 34(2): 433-437.
[10]	何龙彭新光. 基于双线性对签密的安全高效远程证明协议[J]. 计算机应用, 2013, 33(10): 2854-2857.
[11]	朱贺新王正鹏刘业辉方水平. 基于统一可扩展固件接口的可信密码模块驱动研究与设计[J]. 计算机应用, 2013, 33(06): 1646-1649.
[12]	邵婧陈性元杜学绘曹利峰. 基于无干扰理论的分布式多级安全核心架构[J]. 计算机应用, 2013, 33(03): 712-716.
[13]	姚建华吴加敏牛温佳童恩栋. 基于可信QoS聚类的遥感服务发现机制[J]. 计算机应用, 2013, 33(02): 587-591.
[14]	莫家庆胡忠望叶雪琳. 基于模糊理论的可信计算信任评估方法研究[J]. 计算机应用, 2013, 33(01): 142-145.
[15]	付东来彭新光陈够喜杨秋翔. 动态Huffman树平台配置远程证明方案[J]. 计算机应用, 2012, 32(08): 2275-2282.

操作系统内核的动态可信度量模型

Dynamic trusted measurement model of operating system kernel

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics