The theory and practice in the evolution of trusted computing

Trusted computing （TC） is an emerging tech- nology to enhance the security of various computing plat- forms by a dedicated secure chip （TPM/TCM）, which is widely accepted by both the industrial and academic world. This paper attempts to sketch the evolution of TC from the view of our theoretical and engineering work. In theory, we focus on protocol design and security analysis. We have proposed the first ECDAA protocol scheme based on q-SDH assumption, which highlights a new way to design direct anonymous attestation scheme. In technical evolu- tion, we discuss the key technologies of trust chain, trusted network connection and TC testing and evaluation. We break through several key technologies such as trusted boot, OS measurement and remote attestation, and imple- ment a TC system from TPM/TCM to network. We also design and implement a testing and evaluation system of TC platform, which is the first one put into practical application in China. Finally, with the rapid development of cloud computing and mobile applications, TC is moving toward some new directions, such as the trust in cloud and mobile environments, new TPM standard, and flexible trust execution environment trust establishment method.     

vTCM:一种基于物理可信计算环境虚拟化的虚拟可信密码模块

虚拟机的信任问题是虚拟机安全的关键问题之一,可信密码模块作为计算机信任的源头,其在虚拟机上的应用也引起了越来越多的关注。提出了虚拟可信密码模块(virtual trusted cryptography module, vTCM)方案,该方案将现有可信密码模块(trusted cryptography module, TCM)方案扩展为可切换vTCM场景的vTCM物理环境来支持少量物理vTCM场景,通过vTCM场景的虚拟化调度,从而支持多个虚拟机的TCM访问,为每个虚拟机分配一个绑定的vTCM实例,并使这些实例可以轮流在物理vTCM场景中运行,以使vTCM的安全性分析可以借助TCM结论,增强vTCM的安全性。这一方案在vTCM的管理,包括vTCM迁移等操作上,也体现出了其优势。给出了该方案在KVM虚拟化平台下的实现方法,实现结果表明,该方案不但可行,并且对现有的虚拟机机制有良好的兼容性。     

vCerberus: A DRTM system based on virtualization technology

This paper presents vCerberus, a novel hypervisor to provide trusted and isolated code execution within virtual domains. vCerberus is considerably tiny, while allowing secure sensitive codes to be executed in an isolated circumstance from the virtual domain, and can be attested by a remote party in an efficient way. These properties will be guaranteed even if the guest operating system is malicious. This protects the secure sensitive codes against the malicious codes in the Guest OS, e.g., the kernel rootkits. We present an approach to dynamically measure and isolate the launch environment on the virtual machines based on the para-virtualization technology and a novel virtualization of trusted platform module (TPM). Our performance experiment result shows that the overhead introduced by vCerberus is minimized; the performance of the launch environment in vCerberus is as competitive as the guest OS running on mainstream hypervisors.     

可信模块与强制访问控制结合的安全防护方案

基于可信计算思想,通过在现有移动终端中加入移动可信计算模块,并在核心网中加入安全服务提供者和安全软件提供商,构架了面向移动终端的统一安全防护体系,为用户提供安全服务.该方案有效利用了移动终端操作系统的特性,将基于角色的访问控制与可信验证相结合,实现了高效的可信链传递,使没有授权证书的非法软件和非法进程不能在系统中运行,...     

基于可信计算的移动平台设计方案

在深入研究现有可信移动平台设计方案和TCG移动可信模块相关技术的基础上,提出了带有移动可信模块的可信移动平台设计方案.平台采用基带处理器和应用处理器分离的结构,利用移动可信模块构建了以应用处理器为中心的可信区域,为移动平台提供受保护的计算和存储空间,提高了移动平台的安全性、灵活性和可靠性.分析了现有可信移动平台安全引导过程安全漏洞,提出了改进的安全引导过程,并通过谓词逻辑对改进的引导过程进行了正确性验证.     

TPM context manager and dynamic configuration management for trusted virtualization platform

It is absolutely critical that trusted configuration management which significantly affects trust chain establishment, sealing storage and remote attestation, especially in trusted virtualization platform like Xen whose system configuration changes easily. TPM （trusted platform module） context manager is presented to carry out dynamic configuration management for virtual machine. It manages the TPM command requests and VM （virtual machine） configurations. The dynamic configuration representa- tion method based on Merkle hash tree is explicitly proposed against TCG （trusted computing group） static configuration representation. It reflects the true VM status in real time even if the configuration has changed, and it eliminates the invalidation of configuration representation, sealing storage and remote attestation. TPM context manager supports TCG storage protection, remote attestation etc, which greatly enhances the security on trusted virtualization platform.     

The Mechanism about Key and Credential on Trusted Computing Platform and the Application Study

0 IntroductionPeople need a secure and dependable computing environ-ment[1]. The cryptology is known as the core of com-puter security[2]. The application of cryptologyis mainly ful-filled by key management and credential mechanism.In thispaper , we should study the key management and credentialmechanismbased ontrusted computing platform,and give theactual application of these security mechanisms for buildingtrusted computing environment .1 OverviewTrusted Computing1 .1 The Original of Trus…     

对移动电子商务微支付模式的研究

微支付与人们的生活密切相关,随着因特网和手机的发展,移动微支付越来越被人们所接受和喜爱,谁都愿意方便快捷地使用手机随时随地的购买一条新闻或订购一块面包。在电子商务中,现金变成了代币形式的电子现金。使用代币消费更接近于人们习惯的付款方式,同时它又将付款流程电子化,免去了找零等过程,因此更容易被人们所接受。     

Efficient and secure multi-signature scheme based on trusted computing

A new multi-signature scheme was proposed with the extension of the direct anonymous attestation (DAA) protocol supported by trusted computing (TC) technology. Analysis and simulation results show that the signer’s privacy is well protected with dynamic anonymity, the public key and signatures have length independent of the number of signature members, new signers are allowed to join the signature without modifying the public key, and attacks caused by secret key dumping or leaking can be avoided. Biography: HAO Liming (1982–), male, Ph.D. candidate, research direction: trusted computing and trust management in P2P system.     

A Separated Domain-Based Kernel Model for Trusted Computing

This paper fist gives an investigation on trusted computing on mainstream operation system （OS）. Based on the observations, it is pointed out that Trusted Computing cannot be achieved due to the lack of separation mechanism of the components in mainstream OS. In order to provide a kind of separation mechanism, this paper proposes a separated domain-based kernel model （SDBKM）, and this model is verified by non-interference theory. By monitoring and simplifying the trust dependence between domains, this model can solve problems in trust measurement such as deny of service （DoS） attack, Host security, and reduce the overhead of measurement.     

移动支付的安全性与解决措施探讨

随着移动电子商务的迅速发展．移动支付越来越融入到人们的生活中．移动支付是移动电子商务的关键．针对移动支付的分类、发展、移动支付的安全性等方面进行分析,并提出了基于硬件安全模块SE的保护、客户端与服务器间加密认证及采取合理的监管措施等移动支付安全的措施．以求为用户移动支付寻找一个安全性较高的环境．     

Mobile Agent系统的整体安全机制研究

安全问题是移动Agent技术应用到分布计算环境中的关键问题,在分析了现有安全策略的基础上,提出了一种基于可信任第三方的移动Agent整体安全设计方案,为解决移动Agent的安全问题提供了一种新方法.     

A new efficient mobile micropayment scheme

This paper proposes a micropayment scheme designed for GSM mobile scenario, where the overload of computation, storage and communication for mobile phone is reduced by directing operations normally performed by the mobile user to the static portion of the network in view of its limited capability. Messages which received and sent during the payment are very simple and public key infrastructure is not needed, which reduces delay and removes the possibility of incomplete payment due to communications failures. Furthermore, all the information related to payment is encrypted by a shared symmetric key in our scheme, so the privacy of the mobile user is protected and the security of information is guaranteed. Compared with other mobile micropayment schemes in existence, no public-key operation is required, which minimizes the computation and storage overhead dramatically. In addition, restricted anonymous is also provided in our scheme.     

操作系统可信机制功能模型研究

提出了一种操作系统可信机制功能模型建立方法,基于XML设计了存储结构,并用于可信机制层次功能模型的存储和转换;设计了IDA反汇编工具的相关插件,实现了从二进制代码中自动抽取和保存函数依赖关系、函数CFG图和层次功能模型的功能。     

移动支付中二维码的安全性研究

移动支付是近年来新兴的一种便利快捷的支付手段,并迅速占有相当的支付市场份额.移动支付按支付距离分为近程支付和远程支付两种,本文研究的是第三方支付在近程支付常采用的一种方案.该方案以二维码信息技术为媒介,实现近程支付到远程支付的转换,最终完成支付.但由于所采用二维码本身的局限性,依托其作为第三方支付手段的过程中便出现了相关的安全威胁,其中最典型的是钓鱼威胁.本文详细分析了其可能存在的安全威胁,并采用特殊加密方法和第三方认证方法对这一问题进行处理,且对解决方法进行可行性分析,最后利用形式化验证的方法验证其安全性.     

Development of Trusted Computing Research

0 IntroductionWiththe development of informationtechnology,infor-mation market gives all-ti me thriving appearance;theother side,the attack events increased, which have affectednational security and social stabilization. Under the situation,trusted computing (TC) is required.Current trusted computing is to adding the concept oftrust to information society. Through the current technolo-gies ,the trust society would be established and informationsecurity would bei mproved.In technical fields ,…     

基于KVM的可信虚拟化架构模型

针对云计算安全中的虚拟化安全问题, 提出一种可改善虚拟化安全问题的可信虚拟化架构. 该架构通过在模拟处理器中添加虚拟可信平台模块, 在操作系统中添加可信平台模块驱动, 构造一个从底层基础架构到上层应用服务的可信架构. 该架构在虚拟化平台服务器中融合了可信平台模块, 可有效解决虚拟化平台服务器的安全性
问题.     

基于身份tate配对的移动支付手机终端

针对当前移动支付业务对安全性能的需求,描述了一种用于支付的手机终端,采用移动支付协议和终端安全机制,既保证了移动支付数据的安全性,又减少了通信次数和费用.此外,由于手机终端有限的存储能力和无线通信网络有限的带宽导致在无线移动环境中采用数字证书是不适合的,因此提出了一种基于身份的tate配对数字签名方案.通过终端身份特征生成密钥,有效地降低了公钥密码系统中数字证书的分发和管理成本.该数字签名方案具有简单、有效的特点,适用于低带宽的无线环境和低性能的终端设备中.     

Modeling Trusted Computing

0 IntroductionThe purpose of trusted computingis to solve some of to-day’s security problems through hardware changes topersonal computer . The trusted property can be extendedfromroot of trust to entire PC platformthrough the chain oftrust[1].Root of trustis a small hardware device calledtrustedplatform module (TPM) addedto PC.A well-known project of trusted computing is trustedcomputing platformalliance(TCPA) .It is calledtrusted com-puting group (TCG) now[2 ,3]. Besides this , other…     

Design and implementation of an IPC-based control system for mobile robots

This paper introduces an autonomous mobile robot system applicable under dynamic environment.Every robot contains a muhi-sensor system, a differential-drive vehicle and a wireless LAN. A real-time on-board control system makes decision autonomously according to the perception from the multi-sensor system. Under the Windows operation system (OS), inter-process communication (IPC) mechanism of Linux OS is introduced into control system design. A distributed software architecture based on IPC,which can be used for multiple mobile robots system, is proposed. The architecture can make the system more flexible and scalable. The expansion of robot‘ s function and cooperation between robots can be. easily realized. The experiments and robot soccer game show the validity of the architectnre.