WO2021208354A1 - Apparatus and method for performing trusted measurement by introducing external hardware root of trust - Google Patents

Apparatus and method for performing trusted measurement by introducing external hardware root of trust Download PDF

Info

Publication number
WO2021208354A1
WO2021208354A1 PCT/CN2020/115906 CN2020115906W WO2021208354A1 WO 2021208354 A1 WO2021208354 A1 WO 2021208354A1 CN 2020115906 W CN2020115906 W CN 2020115906W WO 2021208354 A1 WO2021208354 A1 WO 2021208354A1
Authority
WO
WIPO (PCT)
Prior art keywords
unit
trusted computing
computing module
universal serial
serial bus
Prior art date
Application number
PCT/CN2020/115906
Other languages
French (fr)
Chinese (zh)
Inventor
方昊
吴鹤意
Original Assignee
南京东科优信网络安全技术研究院有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 南京东科优信网络安全技术研究院有限公司 filed Critical 南京东科优信网络安全技术研究院有限公司
Publication of WO2021208354A1 publication Critical patent/WO2021208354A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • G06F21/575Secure boot
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F13/00Interconnection of, or transfer of information or other signals between, memories, input/output devices or central processing units
    • G06F13/38Information transfer, e.g. on bus
    • G06F13/40Bus structure
    • G06F13/4063Device-to-bus coupling
    • G06F13/4068Electrical coupling
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2213/00Indexing scheme relating to interconnection of, or transfer of information or other signals between, memories, input/output devices or central processing units
    • G06F2213/0042Universal serial bus [USB]
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02DCLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
    • Y02D10/00Energy efficient computing, e.g. low power processors, power management or thermal management

Definitions

  • the present invention relates to information security technology, in particular to a device and method for introducing an external hardware root of trust for credibility measurement.
  • Trusted computing as an active defense technology, does not need to rely on virus database upgrades and can automatically be immune to new security threats such as ransomware, advertising Trojans, and mining machines.
  • Trusted computing generally requires a trusted computing module (TPM/TCM) and a core root trust measurement module (CRTM) to be attached to the motherboard.
  • TPM/TCM trusted computing module
  • CRTM core root trust measurement module
  • the core root trust measurement module is generally implemented in two ways: one is for embedded hardware (such as routers, mobile phones), the basic boot program is directly solidified in the read-only memory on the motherboard, and the CPU is powered on according to the jumper settings. Directly run the basic boot program in the read-only memory; one is to use UEFI with the SecureBoot function of the motherboard to verify the signature on the system based on UEFI boot, and the motherboard will verify the boot program, and then proceed to the subsequent boot process after the verification is passed. .
  • the trusted computing module generally refers to the international standard TPM (Trusted Platform Module) or the national secret standard TCM (Trusted Cryptographic Module). Both need to be embedded in the motherboard and connected by LPC bus, I2C bus or SPI bus.
  • LPC bus, I2C bus or SPI bus of the ordinary motherboard is directly connected to the CPU, and there is no interface left outside for users to plug in.
  • trusted computing requires hardware support from both the trusted computing module and the core root trust measurement module, and the general implementation of these two key hardware for trusted computing is closely tied to the motherboard design.
  • old computer systems are facing severe security threats-old computer systems often run professional software that has been running stably in the past few years, and the basic system (such as Windows XP, etc.) that runs these professional software is no longer provided by the manufacturer. Upgrade and maintenance, and potential system vulnerabilities are constantly discovered by information security attackers.
  • Most of the existing old computer systems do not have hardware-level trusted computing function support, or use relatively backward trusted computing hardware. And because the old computer systems of industry users often run professional software and take on key roles, they cannot update to the latest system or simply replace the hardware at will. Therefore, there needs to be a way to introduce New trusted hardware.
  • the present invention aims at the problem of accessing trusted hardware and exerting trusted computing functions on computers that did not consider trusted computing hardware in the original design, and provides a device and method for introducing an external hardware root of trust for trust measurement .
  • the device described in the present invention introduces an external hardware root of trust for credibility measurement, which includes a universal serial bus monitoring unit, a trusted computing module drive unit, a trusted computing module, and a flash memory read-write unit.
  • the universal serial bus supervisory unit is connected to the universal serial bus interface (ie, USB interface) of the computer upwards, and the trusted computing module drive unit and the flash memory read-write unit are connected downwards.
  • the trusted computing module driving unit is connected to the trusted computing module.
  • the universal serial bus supervisory unit includes a memory, a processor, and a computer program stored on the memory and running on the processor.
  • the processor executes the program, it realizes: monitors the universal serial bus data flow, and reads the data on the bus. Fetch and write signals for analysis, arbitration and forwarding.
  • the "analysis” function is analyzed in this unit according to the universal serial bus protocol standard, and the "arbitration” function extracts the reading and writing direction and address information of the bus signal as verification information
  • the two-tuple is sent to the trusted computing module driving unit and waiting for its feedback, and arbitrating whether to forward or not according to the feedback.
  • the "forwarding" function forwards the signal marked as a preset specific address to the trusted computing module driving unit to arbitrate Other permitted non-preset specific address signals are forwarded to the flash memory read/write unit, and the universal serial bus signals fed back by the trusted computing module drive unit and the flash memory read/write unit are fed back to the connected host universal serial bus interface.
  • the trusted computing module driving unit includes a memory, a processor, and a computer program that is stored on the memory and can run on the processor.
  • the processor executes the program, it realizes: receiving verification information generated by the universal serial bus supervisory unit 2. Tuple, and read the preset specific address information and the state register information of the trusted computing module, and feed back the verification information to the universal serial bus supervision unit; receive the specific information forwarded by the universal serial bus supervision unit
  • the signal of the address is converted into a signal specified by the trusted computing module communication protocol, and then transferred to the trusted computing module, and then the signal fed back by the trusted computing module is converted into a signal specified by the universal serial bus protocol, and then transmitted back to the universal serial Bus supervision unit.
  • the flash memory read-write unit is a USB flash memory read-write module and a flash memory particle chip commonly used in the market, and is introduced as a necessary component of the device as a whole.
  • the unit operates without modification in accordance with the Universal Serial Bus standard.
  • the flash memory read-write unit also includes a computer program that can be run on the processor of the user's host. When the processor executes the program, it implements: loading and executing the device driver, loading and executing the host disk driver, and loading and executing the credibility measurement program (The program that performs trusted verification on the boot program of the user host and configures the state of the trusted computing module according to the trusted computing standard).
  • the trusted measurement program uses the device driver to send a signal to the universal serial bus supervisory unit, and then through the trusted computing module to drive the unit, after passing the verification, the user host's processor control will be handed over to the original boot on the user host's disk
  • the program completes the computer startup.
  • the trusted computing module refers to a trusted computing module chip that conforms to the TPM standard or the TCM standard, and is introduced as a necessary component of the device as a whole. The unit operates without modification according to the TPM standard or the TCM standard.
  • a method for introducing an external hardware root of trust for trust measurement which specifically includes the following steps:
  • the user host disk driver program stored in the flash memory read-write unit is executed, so that the original boot program on the user host disk is read into the user host memory, and the device driver program in step 4 is passed through the universal serial
  • the bus supervision unit, the trusted computing module drive unit, and the trusted computing module perform integrity measurement that meets the trusted standard.
  • the device feeds back the measurement result to the user host. If it passes the measurement, it continues to execute the original boot program of the user host to realize the trusted measurement function; if it does not pass, it alarms and stops the user host startup process.
  • the present invention uses a universal USB interface as the communication interface between the trusted computing module and the computer, and provides that the connection between the host and the core root trust metric module and the trusted computing module is realized in a USB manner
  • the realization of the key technology of the trusted computing technology makes the application field of trusted computing no longer limited to new computers and new operating systems, but is suitable for computers that did not consider trusted technology in the old design, which expands the scope of application of trusted computing technology. .
  • Figure 1 is a schematic diagram of the structure of the device of the present invention.
  • the device includes a universal serial bus supervision unit, a trusted computing module drive unit, a trusted computing module, and a flash memory read-write unit.
  • the universal serial bus supervisory unit is connected to the universal serial bus interface (ie, USB interface) of the user host upwards, and the trusted computing module drive unit and the flash memory read-write unit are connected downwards.
  • the trusted computing module driving unit is connected to the trusted computing module.
  • the universal serial bus supervisory unit includes a memory, a processor, and a computer program stored on the memory and running on the processor.
  • the processor executes the program, it realizes: monitors the universal serial bus data flow, and reads the data on the bus. Fetch and write signals for analysis, arbitration and forwarding.
  • the "analysis” function is analyzed in this unit according to the universal serial bus protocol standard, and the "arbitration” function extracts the reading and writing direction and address information of the bus signal as verification information
  • the two-tuple is sent to the trusted computing module driving unit and waiting for its feedback, and arbitrating whether to forward or not according to the feedback.
  • the "forwarding" function forwards the signal marked as a preset specific address to the trusted computing module driving unit to arbitrate Other permitted non-preset specific address signals are forwarded to the flash memory read/write unit, and the universal serial bus signals fed back by the trusted computing module drive unit and flash memory read/write unit are fed back to the universal serial bus interface of the connected user host .
  • the trusted computing module driving unit includes a memory, a processor, and a computer program that is stored on the memory and can run on the processor.
  • the processor executes the program, it realizes: receiving verification information generated by the universal serial bus supervisory unit 2. Tuple, and read the preset specific address information and the state register information of the trusted computing module, and feed back the verification information to the universal serial bus supervision unit; receive the specific information forwarded by the universal serial bus supervision unit
  • the signal of the address is converted into a signal specified by the trusted computing module communication protocol, and then transferred to the trusted computing module, and then the signal fed back by the trusted computing module is converted into a signal specified by the universal serial bus protocol, and then transmitted back to the universal serial Bus supervision unit.
  • the flash memory read-write unit is a USB flash memory read-write module and a flash memory particle chip commonly used in the market, and is introduced as a necessary component of the device as a whole.
  • the unit operates without modification in accordance with the Universal Serial Bus standard.
  • the flash memory read-write unit also includes a computer program that can run on the processor of the user's host. When the processor executes the computer program, it implements: loading and executing the device driver, loading and executing the host disk driver, loading and executing the trustworthiness measurement Program (a program that performs trusted verification on the boot program of the user host and configures the state of the trusted computing module according to the trusted computing standard).
  • the trusted measurement program uses the device driver to send a signal to the universal serial bus supervisory unit, and then through the trusted computing module to drive the unit, after passing the verification, the user host's processor control will be handed over to the original boot on the user host's disk
  • the program completes the computer startup. Since the write operation to the specific address of the flash memory read/write unit is controlled by the universal serial bus supervision unit and the trusted computing module drive unit, the core root trust measurement module is the device driver and host at the specific address in the flash memory read/write unit. Disk driver and trust measurement program.
  • the trusted computing module refers to a trusted computing module chip that complies with the TPM standard or the TCM standard, and is introduced as a necessary component of the device as a whole. The unit operates without modification according to the TPM standard or the TCM standard.
  • the trusted computing module is connected to the user host by the LPC or SPI bus. From the perspective of the user host, the trusted computing module is a device on the LPC bus or a device on the SPI bus. This is a direct the process of.
  • the motherboard does not plan the LPC bus interface or the SPI bus interface (generally, the LPC bus and the SPI bus are always directly connected to the corresponding devices on the PCB board with wires, and there is no standard interface, so the motherboard does not plan the LPC bus interface or SPI bus.
  • the device monitors the signals on the universal serial bus through the universal serial bus monitoring unit, thereby providing the trusted computing module and the core root trust measurement module with a unified USB interface for the host user to call.
  • the universal serial bus supervisory unit and the trusted computing module drive unit verify the status of the two-tuple and the trusted computing module, and also ensure that the boot root is not threatened by illegal tampering.
  • Step 1 Configure a specific address in the universal serial bus supervisory unit in advance.
  • the specific address is used by the universal serial bus supervisory unit to intercept the specific universal serial bus request and transform it into a trusted computing module request via the trusted computing module driving unit.
  • Step 2 Configure a specific address in the trusted computing module drive unit in advance.
  • the specific address is used to determine whether the specified address is writable in combination with the trusted computing module status, and is used to implement the core root trust measurement module in the flash memory read-write unit.
  • the specific address is consistent with the addresses of the "driver of this device", “driver of the host disk” and “trusted measurement program” in the flash memory read-write unit.
  • Step 3 Pre-set the startup mode in the user host as USB, insert the device into the universal serial bus interface of the user host and power on, the device is read by the user host, through the universal serial bus supervisory unit and flash memory read-write unit , The program stored in the flash memory read-write unit is read by the processor of the user host.
  • Step 4 The device driver stored in the flash memory read-write unit is executed. This driver is used to provide the calling interface of the boot root and trusted root to the host user.
  • Step 5 The user host disk driver stored in the flash memory read-write unit is executed, so that the original boot program on the user host disk is read into the user host memory, and the device driver in step 4 is passed through the universal serial The bus supervision unit, the trusted computing module drive unit, and the trusted computing module perform integrity measurement that meets the trusted standard.
  • Step 6 The device feeds back the measurement result to the user host. If it passes the measurement, it continues to execute the original boot program of the user host to realize the trusted measurement function; if it does not pass, it alarms and stops the user host startup process.

Abstract

An apparatus and method for performing trusted measurement by introducing an external hardware root of trust. The apparatus comprises a universal serial bus supervision unit, a trusted computing module driving unit, a trusted computing module and a flash memory read-write unit, wherein the universal serial bus supervision unit is upwardly-docked with a universal serial bus interface of a computer, and is downwardly-connected to the trusted computing module driving unit and the flash memory read-write unit; and the trusted computing module driving unit is also connected to the trusted computing module. According to the apparatus and method, a USB interface serves as a communication interface between a trusted computing module and a computer, and an implementation means for key technology of connecting a host to a core root trusted measurement module and the trusted computing module in a USB manner is provided, such that the application field of trusted computing is no longer limited to new computers and new operating systems, but is also applicable to old computers which do not take trusted technology into consideration when being designed, thereby expanding the application range of trusted computing technology.

Description

一种引入外置式硬件信任根进行可信度量的装置与方法Device and method for introducing external hardware root of trust for credibility measurement 技术领域Technical field
本发明涉及信息安全技术,特别是涉及一种引入外置式硬件信任根进行可信度量的装置与方法。The present invention relates to information security technology, in particular to a device and method for introducing an external hardware root of trust for credibility measurement.
背景技术Background technique
可信计算作为一种主动防御技术,不需要依赖病毒库的升级更新,就可以自动免疫诸如勒索病毒、广告木马、挖矿机等新型安全威胁。可信计算一般要求在主板上附有可信计算模块(TPM/TCM)和核心根信任度量模块(CRTM)。Trusted computing, as an active defense technology, does not need to rely on virus database upgrades and can automatically be immune to new security threats such as ransomware, advertising Trojans, and mining machines. Trusted computing generally requires a trusted computing module (TPM/TCM) and a core root trust measurement module (CRTM) to be attached to the motherboard.
核心根信任度量模块一般有两种实现方式:一种是针对嵌入式硬件(如路由器、手机),直接将基础引导程序固化在主板上的只读存储器中,CPU上电后依据跳线设置,直接运行只读存储器中的基础引导程序;一种是在基于UEFI引导的系统上,使用UEFI配合主板的SecureBoot功能验签,由主板对引导程序进行校验,校验通过后再进行后续引导过程。The core root trust measurement module is generally implemented in two ways: one is for embedded hardware (such as routers, mobile phones), the basic boot program is directly solidified in the read-only memory on the motherboard, and the CPU is powered on according to the jumper settings. Directly run the basic boot program in the read-only memory; one is to use UEFI with the SecureBoot function of the motherboard to verify the signature on the system based on UEFI boot, and the motherboard will verify the boot program, and then proceed to the subsequent boot process after the verification is passed. .
可信计算模块一般指国际标准的TPM(可信平台模块)或者国密标准的TCM(可信密码模块)。两者都需要嵌入主板,以LPC总线、I2C总线或SPI总线相连。而普通主板的LPC总线、I2C总线或SPI总线直接连接CPU,并没有留在外部,供用户接插的接口。The trusted computing module generally refers to the international standard TPM (Trusted Platform Module) or the national secret standard TCM (Trusted Cryptographic Module). Both need to be embedded in the motherboard and connected by LPC bus, I2C bus or SPI bus. The LPC bus, I2C bus or SPI bus of the ordinary motherboard is directly connected to the CPU, and there is no interface left outside for users to plug in.
如上所属,可信计算需要可信计算模块和核心根信任度量模块两方面的硬件支持,而这两种实现可信计算的关键硬件的一般实现方式与主板设计紧密绑定。As mentioned above, trusted computing requires hardware support from both the trusted computing module and the core root trust measurement module, and the general implementation of these two key hardware for trusted computing is closely tied to the motherboard design.
另一方面,老旧计算机系统面临着严峻的安全威胁——老旧计算机系统运行的往往是过去若干年间稳定运行的专业软件,运行这些专业软件的基础系统(如Windows XP等)厂商已经不提供升级与维护,而潜在的系统漏洞又不断为信息安全攻击者所发现。现存的老旧计算机系统多无硬件级可信计算功能支持,或者使用了比较落后的可信计算硬件。而正由于行业用户的老旧计算机系统往往运行着专业软件,承担了关键角色,无法随意更新为最新系统或者简单地替换硬件,因此需要有一种方法,在不破坏原有系统的情况下,引入新的可信硬件。On the other hand, old computer systems are facing severe security threats-old computer systems often run professional software that has been running stably in the past few years, and the basic system (such as Windows XP, etc.) that runs these professional software is no longer provided by the manufacturer. Upgrade and maintenance, and potential system vulnerabilities are constantly discovered by information security attackers. Most of the existing old computer systems do not have hardware-level trusted computing function support, or use relatively backward trusted computing hardware. And because the old computer systems of industry users often run professional software and take on key roles, they cannot update to the latest system or simply replace the hardware at will. Therefore, there needs to be a way to introduce New trusted hardware.
发明内容Summary of the invention
发明目的:本发明针对在原本设计时未考虑可信计算硬件的计算机上接入可信硬件并发挥可信计算功能的问题,提供一种引入外置式硬件信任根进行可信度量的装置与方法。Objective of the invention: The present invention aims at the problem of accessing trusted hardware and exerting trusted computing functions on computers that did not consider trusted computing hardware in the original design, and provides a device and method for introducing an external hardware root of trust for trust measurement .
技术方案:为实现上述发明目的,本发明采用以下技术方案:Technical solution: In order to achieve the above-mentioned purpose of the invention, the present invention adopts the following technical solutions:
本发明描述的一种引入外置式硬件信任根进行可信度量的装置,包括通用串行总线监督单元、可信计算模块驱动单元、可信计算模块、闪存读写单元。其中通用串行总线监督单元向上对接计算机的通用串行总线接口(即USB接口),下接可信计算模块驱动单元和闪存读写单元。可信计算模块驱动单元又与可信计算模块相连。The device described in the present invention introduces an external hardware root of trust for credibility measurement, which includes a universal serial bus monitoring unit, a trusted computing module drive unit, a trusted computing module, and a flash memory read-write unit. Among them, the universal serial bus supervisory unit is connected to the universal serial bus interface (ie, USB interface) of the computer upwards, and the trusted computing module drive unit and the flash memory read-write unit are connected downwards. The trusted computing module driving unit is connected to the trusted computing module.
所述通用串行总线监督单元包括存储器、处理器及存储在存储器上并可在处理器上运行的计算机程序,处理器执行该程序时实现:监控通用串行总线数据流,对总线上的读 取和写入信号进行解析、仲裁和转发,其中,“解析”功能在本单元内按通用串行总线协议标准进行解析,“仲裁”功能将总线信号的读写方向、地址信息提取为验证信息二元组发送给可信计算模块驱动单元并等待其反馈,根据反馈进行转发与否的仲裁,“转发”功能对于标记为预置特定地址的信号,转发至可信计算模块驱动单元,对仲裁许可的其他非预置特定地址信号,转发至闪存读写单元,并将可信计算模块驱动单元和闪存读写单元反馈的通用串行总线信号反馈到所连接的主机通用串行总线接口。The universal serial bus supervisory unit includes a memory, a processor, and a computer program stored on the memory and running on the processor. When the processor executes the program, it realizes: monitors the universal serial bus data flow, and reads the data on the bus. Fetch and write signals for analysis, arbitration and forwarding. Among them, the "analysis" function is analyzed in this unit according to the universal serial bus protocol standard, and the "arbitration" function extracts the reading and writing direction and address information of the bus signal as verification information The two-tuple is sent to the trusted computing module driving unit and waiting for its feedback, and arbitrating whether to forward or not according to the feedback. The "forwarding" function forwards the signal marked as a preset specific address to the trusted computing module driving unit to arbitrate Other permitted non-preset specific address signals are forwarded to the flash memory read/write unit, and the universal serial bus signals fed back by the trusted computing module drive unit and the flash memory read/write unit are fed back to the connected host universal serial bus interface.
所述可信计算模块驱动单元包括存储器、处理器及存储在存储器上并可在处理器上运行的计算机程序,处理器执行该程序时实现:接收由通用串行总线监督单元产生的验证信息二元组,并读取预置的特定地址信息与可信计算模块的状态寄存器信息,反馈验证是否通过的信息反馈给通用串行总线监督单元;接收由通用串行总线监督单元转发而来的特定地址的信号,并转换为可信计算模块通信协议所规定的信号,传递给可信计算模块,再将可信计算模块反馈的信号转换为通用串行总线协议规定的信号,传回通用串行总线监督单元。The trusted computing module driving unit includes a memory, a processor, and a computer program that is stored on the memory and can run on the processor. When the processor executes the program, it realizes: receiving verification information generated by the universal serial bus supervisory unit 2. Tuple, and read the preset specific address information and the state register information of the trusted computing module, and feed back the verification information to the universal serial bus supervision unit; receive the specific information forwarded by the universal serial bus supervision unit The signal of the address is converted into a signal specified by the trusted computing module communication protocol, and then transferred to the trusted computing module, and then the signal fed back by the trusted computing module is converted into a signal specified by the universal serial bus protocol, and then transmitted back to the universal serial Bus supervision unit.
所述闪存读写单元为市面常见的USB闪存读写模块和闪存颗粒芯片,作为本装置的必要组件整体引入。该单元按通用串行总线标准不加改动地运行。闪存读写单位还包括可在用户主机的处理器上运行的计算机程序,处理器执行该程序时实现:加载并执行本装置驱动程序、加载并执行主机磁盘驱动程序、加载并执行可信度量程序(按可信计算标准对用户主机的引导程序进行可信校验并配置可信计算模块状态的程序)。可信度量程序利用本装置驱动程序发送信号到通用串行总线监督单元,然后透过可信计算模块驱动单元,通过校验后则将用户主机的处理器控制权交给用户主机磁盘上原有引导程序完成计算机启动。The flash memory read-write unit is a USB flash memory read-write module and a flash memory particle chip commonly used in the market, and is introduced as a necessary component of the device as a whole. The unit operates without modification in accordance with the Universal Serial Bus standard. The flash memory read-write unit also includes a computer program that can be run on the processor of the user's host. When the processor executes the program, it implements: loading and executing the device driver, loading and executing the host disk driver, and loading and executing the credibility measurement program (The program that performs trusted verification on the boot program of the user host and configures the state of the trusted computing module according to the trusted computing standard). The trusted measurement program uses the device driver to send a signal to the universal serial bus supervisory unit, and then through the trusted computing module to drive the unit, after passing the verification, the user host's processor control will be handed over to the original boot on the user host's disk The program completes the computer startup.
所述可信计算模块指符合TPM标准或TCM标准的可信计算模块芯片,作为本装置的必要组件整体引入。该单元按TPM标准或TCM标准不加改动地运行。The trusted computing module refers to a trusted computing module chip that conforms to the TPM standard or the TCM standard, and is introduced as a necessary component of the device as a whole. The unit operates without modification according to the TPM standard or the TCM standard.
一种引入外置式硬件信任根进行可信度量的方法,具体包括以下步骤:A method for introducing an external hardware root of trust for trust measurement, which specifically includes the following steps:
(1)预先在通用串行总线监督单元配置特定地址。(1) Configure a specific address in the universal serial bus supervisory unit in advance.
(2)预先在可信计算模块驱动单元配置特定地址。(2) Configure a specific address in the trusted computing module drive unit in advance.
(3)在用户主机中预先设定启动方式为USB,将本装置插入用户主机通用串行总线接口并上电,本装置被用户主机读取,经由通用串行总线监督单元和闪存读写单元,存储在闪存读写单元内的程序被用户主机的处理器读取。(3) Pre-set the startup mode in the user host as USB, insert the device into the user host's universal serial bus interface and power on, the device is read by the user host, through the universal serial bus supervisory unit and flash memory read-write unit , The program stored in the flash memory read-write unit is read by the processor of the user host.
(4)存储在闪存读写单元内的本装置驱动程序被执行。(4) The device driver stored in the flash memory read-write unit is executed.
(5)存储在闪存读写单元内的用户主机磁盘驱动程序被执行,使得用户主机磁盘上的原有引导程序被读入用户主机内存,并经由步骤四的本装置驱动程序,通过通用串行总线监督单元、可信计算模块驱动单元和可信计算模块进行符合可信标准的完整性度量。(5) The user host disk driver program stored in the flash memory read-write unit is executed, so that the original boot program on the user host disk is read into the user host memory, and the device driver program in step 4 is passed through the universal serial The bus supervision unit, the trusted computing module drive unit, and the trusted computing module perform integrity measurement that meets the trusted standard.
(6)本装置向用户主机反馈度量结果,如果通过度量,则继续执行用户主机原有引导程序,从而实现可信度量功能;如果不通过,则告警并停止用户主机启动过程。(6) The device feeds back the measurement result to the user host. If it passes the measurement, it continues to execute the original boot program of the user host to realize the trusted measurement function; if it does not pass, it alarms and stops the user host startup process.
有益效果:与现有技术相比,本发明使用通用USB接口作为可信计算模块与计算机之间的通信接口,并给出了以USB方式实现主机与核心根信任度量模块和可信计算模块连接的关键技术的实现方式,使可信计算的应用领域不再局限于新计算机和新操作系统,而是适用于旧的设计时未考虑可信技术的计算机,拓展了可信计算技术的适用范围。Beneficial effects: Compared with the prior art, the present invention uses a universal USB interface as the communication interface between the trusted computing module and the computer, and provides that the connection between the host and the core root trust metric module and the trusted computing module is realized in a USB manner The realization of the key technology of the trusted computing technology makes the application field of trusted computing no longer limited to new computers and new operating systems, but is suitable for computers that did not consider trusted technology in the old design, which expands the scope of application of trusted computing technology. .
附图说明Description of the drawings
图1是本发明装置结构示意图。Figure 1 is a schematic diagram of the structure of the device of the present invention.
具体实施方式Detailed ways
下面结合附图和具体实施例对本发明的技术方案进行详细说明。以下所述仅是本发明的优选实施方式,应当指出:对于本技术领域的普通技术人员来说,在不脱离本发明原理的前提下,还可以做出若干改进和润饰,特别是对通用串行总线监督单元实现所运用的具体技术的选择(如选择FPGA实现或嵌入式芯片实现等),这些细节的改变不会对本发明的整体架构产生影响,因此这些改变、改进和润饰也应视为本发明的保护范围。The technical solution of the present invention will be described in detail below with reference to the drawings and specific embodiments. The following are only preferred embodiments of the present invention. It should be pointed out that for those of ordinary skill in the art, without departing from the principle of the present invention, several improvements and modifications can be made, especially for universal strings. The selection of the specific technology used in the implementation of the line bus supervision unit (such as the choice of FPGA implementation or embedded chip implementation, etc.). Changes in these details will not affect the overall architecture of the present invention. Therefore, these changes, improvements and modifications should also be regarded as The scope of protection of the present invention.
如图1所示,本装置包括通用串行总线监督单元、可信计算模块驱动单元、可信计算模块、闪存读写单元。其中通用串行总线监督单元向上对接用户主机的通用串行总线接口(即USB接口),下接可信计算模块驱动单元和闪存读写单元。可信计算模块驱动单元又与可信计算模块相连。As shown in Figure 1, the device includes a universal serial bus supervision unit, a trusted computing module drive unit, a trusted computing module, and a flash memory read-write unit. Among them, the universal serial bus supervisory unit is connected to the universal serial bus interface (ie, USB interface) of the user host upwards, and the trusted computing module drive unit and the flash memory read-write unit are connected downwards. The trusted computing module driving unit is connected to the trusted computing module.
所述通用串行总线监督单元包括存储器、处理器及存储在存储器上并可在处理器上运行的计算机程序,处理器执行该程序时实现:监控通用串行总线数据流,对总线上的读取和写入信号进行解析、仲裁和转发,其中,“解析”功能在本单元内按通用串行总线协议标准进行解析,“仲裁”功能将总线信号的读写方向、地址信息提取为验证信息二元组发送给可信计算模块驱动单元并等待其反馈,根据反馈进行转发与否的仲裁,“转发”功能对于标记为预置特定地址的信号,转发至可信计算模块驱动单元,对仲裁许可的其他非预置特定地址信号,转发至闪存读写单元,并将可信计算模块驱动单元和闪存读写单元反馈的通用串行总线信号反馈到所连接的用户主机的通用串行总线接口。The universal serial bus supervisory unit includes a memory, a processor, and a computer program stored on the memory and running on the processor. When the processor executes the program, it realizes: monitors the universal serial bus data flow, and reads the data on the bus. Fetch and write signals for analysis, arbitration and forwarding. Among them, the "analysis" function is analyzed in this unit according to the universal serial bus protocol standard, and the "arbitration" function extracts the reading and writing direction and address information of the bus signal as verification information The two-tuple is sent to the trusted computing module driving unit and waiting for its feedback, and arbitrating whether to forward or not according to the feedback. The "forwarding" function forwards the signal marked as a preset specific address to the trusted computing module driving unit to arbitrate Other permitted non-preset specific address signals are forwarded to the flash memory read/write unit, and the universal serial bus signals fed back by the trusted computing module drive unit and flash memory read/write unit are fed back to the universal serial bus interface of the connected user host .
所述可信计算模块驱动单元包括存储器、处理器及存储在存储器上并可在处理器上运行的计算机程序,处理器执行该程序时实现:接收由通用串行总线监督单元产生的验证信息二元组,并读取预置的特定地址信息与可信计算模块的状态寄存器信息,反馈验证是否通过的信息反馈给通用串行总线监督单元;接收由通用串行总线监督单元转发而来的特定地址的信号,并转换为可信计算模块通信协议所规定的信号,传递给可信计算模块,再将可信计算模块反馈的信号转换为通用串行总线协议规定的信号,传回通用串行总线监督单元。The trusted computing module driving unit includes a memory, a processor, and a computer program that is stored on the memory and can run on the processor. When the processor executes the program, it realizes: receiving verification information generated by the universal serial bus supervisory unit 2. Tuple, and read the preset specific address information and the state register information of the trusted computing module, and feed back the verification information to the universal serial bus supervision unit; receive the specific information forwarded by the universal serial bus supervision unit The signal of the address is converted into a signal specified by the trusted computing module communication protocol, and then transferred to the trusted computing module, and then the signal fed back by the trusted computing module is converted into a signal specified by the universal serial bus protocol, and then transmitted back to the universal serial Bus supervision unit.
所述闪存读写单元为市面常见的USB闪存读写模块和闪存颗粒芯片,作为本装置的必要组件整体引入。该单元按通用串行总线标准不加改动地运行。闪存读写单元还包括可在用户主机的处理器上运行的计算机程序,处理器执行该计算机程序时实现:加载并执行本装置驱动程序、加载并执行主机磁盘驱动程序、加载并执行可信度量程序(按可信计算标准对用户主机的引导程序进行可信校验并配置可信计算模块状态的程序)。可信度量程序利用本装置驱动程序发送信号到通用串行总线监督单元,然后透过可信计算模块驱动单元,通过校验后则将用户主机的处理器控制权交给用户主机磁盘上原有引导程序完成计算机启动。由于对闪存读写单元特定地址的写操作受通用串行总线监督单元和可信计算模块驱动单元控制,因此核心根信任度量模块即为闪存读写单元中特定地址上的本装置驱动程序、主机磁盘驱动程序和可信度量程序。The flash memory read-write unit is a USB flash memory read-write module and a flash memory particle chip commonly used in the market, and is introduced as a necessary component of the device as a whole. The unit operates without modification in accordance with the Universal Serial Bus standard. The flash memory read-write unit also includes a computer program that can run on the processor of the user's host. When the processor executes the computer program, it implements: loading and executing the device driver, loading and executing the host disk driver, loading and executing the trustworthiness measurement Program (a program that performs trusted verification on the boot program of the user host and configures the state of the trusted computing module according to the trusted computing standard). The trusted measurement program uses the device driver to send a signal to the universal serial bus supervisory unit, and then through the trusted computing module to drive the unit, after passing the verification, the user host's processor control will be handed over to the original boot on the user host's disk The program completes the computer startup. Since the write operation to the specific address of the flash memory read/write unit is controlled by the universal serial bus supervision unit and the trusted computing module drive unit, the core root trust measurement module is the device driver and host at the specific address in the flash memory read/write unit. Disk driver and trust measurement program.
所述可信计算模块指符合TPM标准或TCM标准的可信计算模块芯片,作为本装置的 必要组件整体引入。该单元按TPM标准或TCM标准不加改动地运行。The trusted computing module refers to a trusted computing module chip that complies with the TPM standard or the TCM standard, and is introduced as a necessary component of the device as a whole. The unit operates without modification according to the TPM standard or the TCM standard.
在传统可信计算体系中,可信计算模块与用户主机用LPC或SPI总线连接,在用户主机看来,可信计算模块是一个LPC总线上的设备或SPI总线上的设备,这是一个直接的过程。而在主板未规划LPC总线接口或SPI总线接口(一般地,LPC总线和SPI总线总是直接在PCB版上用导线直连对应器件,并无标准接口,所以主板未规划LPC总线接口或SPI总线接口是常态)时,本装置通过通用串行总线监督单元对通用串行总线上的信号进行监听,从而将可信计算模块和核心根信任度量模块用统一的USB界面提供给主机用户调用。同时,通用串行总线监督单元和可信计算模块驱动单元通过验证二元组和可信计算模块状态,还保证了启动根不受非法篡改的威胁。In the traditional trusted computing system, the trusted computing module is connected to the user host by the LPC or SPI bus. From the perspective of the user host, the trusted computing module is a device on the LPC bus or a device on the SPI bus. This is a direct the process of. However, the motherboard does not plan the LPC bus interface or the SPI bus interface (generally, the LPC bus and the SPI bus are always directly connected to the corresponding devices on the PCB board with wires, and there is no standard interface, so the motherboard does not plan the LPC bus interface or SPI bus. When the interface is normal), the device monitors the signals on the universal serial bus through the universal serial bus monitoring unit, thereby providing the trusted computing module and the core root trust measurement module with a unified USB interface for the host user to call. At the same time, the universal serial bus supervisory unit and the trusted computing module drive unit verify the status of the two-tuple and the trusted computing module, and also ensure that the boot root is not threatened by illegal tampering.
下面对通过本装置实现可信启动的流程做具体描述:The following is a detailed description of the process of realizing trusted startup through this device:
步骤一:预先在通用串行总线监督单元配置特定地址,此特定地址用于通用串行总线监督单元拦截特定通用串行总线请求,经由可信计算模块驱动单元变换为可信计算模块请求。Step 1: Configure a specific address in the universal serial bus supervisory unit in advance. The specific address is used by the universal serial bus supervisory unit to intercept the specific universal serial bus request and transform it into a trusted computing module request via the trusted computing module driving unit.
步骤二:预先在可信计算模块驱动单元配置特定地址,此特定地址用于结合可信计算模块状态,判断指定地址是否可写,用来在闪存读写单元中实现核心根信任度量模块。特定地址与闪存读写单元中“本装置驱动程序”、“主机磁盘驱动程序”和“可信度量程序”的地址保持一致。Step 2: Configure a specific address in the trusted computing module drive unit in advance. The specific address is used to determine whether the specified address is writable in combination with the trusted computing module status, and is used to implement the core root trust measurement module in the flash memory read-write unit. The specific address is consistent with the addresses of the "driver of this device", "driver of the host disk" and "trusted measurement program" in the flash memory read-write unit.
步骤三:在用户主机中预先设定启动方式为USB,将本装置插入用户主机通用串行总线接口并上电,本装置被用户主机读取,经由通用串行总线监督单元和闪存读写单元,存储在闪存读写单元内的程序被用户主机的处理器读取。Step 3: Pre-set the startup mode in the user host as USB, insert the device into the universal serial bus interface of the user host and power on, the device is read by the user host, through the universal serial bus supervisory unit and flash memory read-write unit , The program stored in the flash memory read-write unit is read by the processor of the user host.
步骤四:存储在闪存读写单元内的本装置驱动程序被执行。此驱动程序用来向主机用户提供启动根和可信根的调用接口。Step 4: The device driver stored in the flash memory read-write unit is executed. This driver is used to provide the calling interface of the boot root and trusted root to the host user.
步骤五:存储在闪存读写单元内的用户主机磁盘驱动程序被执行,使得用户主机磁盘上的原有引导程序被读入用户主机内存,并经由步骤四的本装置驱动程序,通过通用串行总线监督单元、可信计算模块驱动单元和可信计算模块进行符合可信标准的完整性度量。Step 5: The user host disk driver stored in the flash memory read-write unit is executed, so that the original boot program on the user host disk is read into the user host memory, and the device driver in step 4 is passed through the universal serial The bus supervision unit, the trusted computing module drive unit, and the trusted computing module perform integrity measurement that meets the trusted standard.
步骤六:本装置向用户主机反馈度量结果,如果通过度量,则继续执行用户主机原有引导程序,从而实现可信度量功能;如果不通过,则告警并停止用户主机启动过程。Step 6: The device feeds back the measurement result to the user host. If it passes the measurement, it continues to execute the original boot program of the user host to realize the trusted measurement function; if it does not pass, it alarms and stops the user host startup process.

Claims (9)

  1. 一种引入外置式硬件信任根进行可信度量的装置,其特征在于:包括通用串行总线监督单元、可信计算模块驱动单元、可信计算模块和闪存读写单元,其中通用串行总线监督单元向上对接计算机的通用串行总线接口,下接可信计算模块驱动单元和闪存读写单元,可信计算模块驱动单元又与可信计算模块相连。A device that introduces an external hardware root of trust for credibility measurement, which is characterized in that it includes a universal serial bus monitoring unit, a trusted computing module drive unit, a trusted computing module, and a flash memory read-write unit, wherein the universal serial bus monitors The unit is connected with the universal serial bus interface of the computer upwards, and connected with the trusted computing module drive unit and the flash memory read-write unit, and the trusted computing module drive unit is connected with the trusted computing module.
  2. 根据权利要求1所述的一种引入外置式硬件信任根进行可信度量的装置,其特征在于:通用串行总线监督单元包括第一存储器、第一处理器及存储在第一存储器上并可在第一处理器上运行的第一计算机程序,第一处理器执行该第一计算机程序时实现:监控通用串行总线数据流,对通用串行总线上的读取和写入信号进行解析、仲裁和转发,其中,“解析”功能在本单元内按通用串行总线协议标准进行解析;“仲裁”功能将总线信号的读写方向、地址信息提取为验证信息二元组发送给可信计算模块驱动单元并等待其反馈,根据反馈进行转发与否的仲裁;“转发”功能对于标记为预置特定地址的信号,转发至可信计算模块驱动单元,对仲裁许可的其他非预置特定地址信号,转发至闪存读写单元,并将可信计算模块驱动单元和闪存读写单元反馈的通用串行总线信号反馈到所连接的主机通用串行总线接口。The device for introducing an external hardware root of trust for trust measurement according to claim 1, wherein the universal serial bus supervisory unit includes a first memory, a first processor, and a device stored on the first memory and The first computer program running on the first processor, when the first processor executes the first computer program, it realizes: monitor the universal serial bus data flow, analyze the read and write signals on the universal serial bus, Arbitration and forwarding, in which the "analysis" function is analyzed in this unit according to the universal serial bus protocol standard; the "arbitration" function extracts the reading and writing direction and address information of the bus signal into a two-tuple of verification information and sends it to trusted computing The module drive unit waits for its feedback, and arbitrates whether to forward or not according to the feedback; the "forward" function forwards the signal marked as a preset specific address to the trusted computing module drive unit, and arbitrates other non-preset specific addresses permitted by the arbitration The signal is forwarded to the flash memory read-write unit, and the universal serial bus signal fed back by the trusted computing module drive unit and the flash memory read-write unit is fed back to the connected host universal serial bus interface.
  3. 根据权利要求1所述的一种引入外置式硬件信任根进行可信度量的装置,其特征在于:可信计算模块驱动单元包括第二存储器、第二处理器及存储在第二存储器上并可在第二处理器上运行的第二计算机程序,第二处理器执行该程序时实现:接收由通用串行总线监督单元产生的验证信息二元组,并读取预置的特定地址信息与可信计算模块的状态寄存器信息,反馈验证是否通过的信息反馈给通用串行总线监督单元;接收由通用串行总线监督单元转发而来的特定地址的信号,并转换为可信计算模块通信协议所规定的信号,传递给可信计算模块,再将可信计算模块反馈的信号转换为通用串行总线协议规定的信号,传回通用串行总线监督单元。The device for introducing an external hardware root of trust for trust measurement according to claim 1, wherein the trusted computing module driving unit includes a second memory, a second processor, and a device stored on the second memory and A second computer program running on the second processor. When the second processor executes the program, it realizes: receiving the verification information two-tuple generated by the universal serial bus supervision unit, and reading the preset specific address information and the The information of the state register of the trusted computing module is fed back to the universal serial bus supervisory unit; the signal of the specific address forwarded by the universal serial bus supervisory unit is received and converted into the trusted computing module communication protocol. The specified signal is passed to the trusted computing module, and the signal fed back by the trusted computing module is converted into a signal specified by the universal serial bus protocol, and then transmitted back to the universal serial bus supervisory unit.
  4. 根据权利要求1所述的一种引入外置式硬件信任根进行可信度量的装置,其特征在于:闪存读写单元包括USB闪存读写模块和闪存颗粒芯片,该单元按通用串行总线标准运行,闪存读写单位还包括可在用户主机的处理器上运行的第三计算机程序,用户主机的处理器执行该第三计算机程序时实现:加载并执行本装置驱动程序、加载并执行主机磁盘驱动程序、加载并执行可信度量程序;可信度量程序利用本装置驱动程序发送信号到通用串行总线监督单元,然后透过可信计算模块驱动单元,通过校验后则将用户主机的处理器控制权交给用户主机磁盘上原有引导程序完成计算机启动;由于对闪存读写单元特定地址的写操作受通用串行总线监督单元和可信计算模块驱动单元控制,因此核心根信任度量模块即为闪存读写单元中特定地址上的本装置驱动程序、主机磁盘驱动程序和可信度量程序。The device for introducing an external hardware root of trust for credibility measurement according to claim 1, wherein the flash memory read-write unit includes a USB flash memory read-write module and a flash memory particle chip, and the unit operates according to the universal serial bus standard , The flash memory read-write unit also includes a third computer program that can be run on the processor of the user host, when the processor of the user host executes the third computer program: load and execute the device driver, load and execute the host disk drive Program, load and execute the trusted measurement program; the trusted measurement program uses the device driver to send a signal to the universal serial bus supervision unit, and then drives the unit through the trusted computing module, and after verification, the user host’s processor The control right is handed over to the original boot program on the user host disk to complete the computer startup; because the write operation to the specific address of the flash memory read and write unit is controlled by the universal serial bus supervision unit and the trusted computing module drive unit, the core root trust measurement module is The device driver, host disk driver and trusted measurement program at a specific address in the flash memory read-write unit.
  5. 根据权利要求1所述的一种引入外置式硬件信任根进行可信度量的装置,其特征在于:可信计算模块为符合TPM标准或TCM标准的可信计算模块芯片。The device for introducing an external hardware root of trust for trust measurement according to claim 1, wherein the trusted computing module is a trusted computing module chip that complies with the TPM standard or the TCM standard.
  6. 基于上述权利要求1-5任一项所述一种引入外置式硬件信任根进行可信度量的装置的可信度量方法,其特征在于,包括以下步骤:Based on any one of the above claims 1-5, the method for measuring the trustworthiness of a device that introduces an external hardware root of trust for trustworthiness measurement is characterized in that it comprises the following steps:
    (1)预先在通用串行总线监督单元配置特定地址;(1) Configure a specific address in the universal serial bus supervisory unit in advance;
    (2)预先在可信计算模块驱动单元配置特定地址;(2) Configure a specific address in the trusted computing module drive unit in advance;
    (3)在用户主机中预先设定启动方式为USB,将本装置插入用户主机通用串行总线接口并上电,本装置被用户主机读取,经由通用串行总线监督单元和闪存读写单元,存储在闪存 读写单元内的程序被用户主机的处理器读取;(3) Pre-set the startup mode in the user host as USB, insert the device into the user host's universal serial bus interface and power on, the device is read by the user host, through the universal serial bus supervisory unit and flash memory read-write unit , The program stored in the flash memory read-write unit is read by the processor of the user host;
    (4)存储在闪存读写单元内的本装置驱动程序被执行;(4) The device driver stored in the flash memory read-write unit is executed;
    (5)存储在闪存读写单元内的用户主机磁盘驱动程序被执行,使得用户主机磁盘上的原有引导程序被读入用户主机内存,并经由步骤(4)的本装置驱动程序,通过通用串行总线监督单元、可信计算模块驱动单元和可信计算模块进行符合可信标准的完整性度量;(5) The user host disk driver program stored in the flash memory read-write unit is executed, so that the original boot program on the user host disk is read into the user host memory, and the device driver program in step (4) is passed through the universal Serial bus supervision unit, trusted computing module drive unit and trusted computing module perform integrity measurement that meets trusted standards;
    (6)本装置向用户主机反馈度量结果,如果通过度量,则继续执行用户主机原有引导程序,从而实现可信度量功能;如果不通过,则告警并停止用户主机启动过程。(6) The device feeds back the measurement result to the user host. If it passes the measurement, it continues to execute the original boot program of the user host to realize the trusted measurement function; if it does not pass, it alarms and stops the user host startup process.
  7. 根据权利要求6所述的一种引入外置式硬件信任根进行可信度量的方法,其特征在于,步骤(1)中特定地址用于通用串行总线监督单元拦截特定通用串行总线请求,经由可信计算模块驱动单元变换为可信计算模块请求。The method for introducing an external hardware root of trust for trust measurement according to claim 6, wherein the specific address in step (1) is used by the universal serial bus supervisory unit to intercept the specific universal serial bus request via The trusted computing module drive unit transforms into a trusted computing module request.
  8. 根据权利要求6所述的一种引入外置式硬件信任根进行可信度量的方法,其特征在于,步骤(2)中特定地址用于结合可信计算模块状态,判断指定地址是否可写,用来在闪存读写单元中实现核心根信任度量模块;特定地址与闪存读写单元中“本装置驱动程序”、“主机磁盘驱动程序”和“可信度量程序”的地址保持一致。The method for introducing an external hardware root of trust for trust measurement according to claim 6, wherein the specific address in step (2) is used to determine whether the specified address is writable in combination with the state of the trusted computing module. To implement the core root trust measurement module in the flash memory read-write unit; the specific address is consistent with the addresses of the "driver of this device", "host disk driver" and "trusted measurement program" in the flash memory read-write unit.
  9. 根据权利要求6所述的一种引入外置式硬件信任根进行可信度量的方法,其特征在于,步骤(4)中本装置驱动程序用来向主机用户提供启动根和可信根的调用接口。A method for introducing an external hardware root of trust for trust measurement according to claim 6, characterized in that, in step (4), the device driver is used to provide the host user with a call interface for the startup root and the trusted root .
PCT/CN2020/115906 2020-04-16 2020-09-17 Apparatus and method for performing trusted measurement by introducing external hardware root of trust WO2021208354A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN202010300260.6 2020-04-16
CN202010300260.6A CN111538993B (en) 2020-04-16 2020-04-16 Device and method for introducing external hardware trust root to perform trusted measurement

Publications (1)

Publication Number Publication Date
WO2021208354A1 true WO2021208354A1 (en) 2021-10-21

Family

ID=71975000

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2020/115906 WO2021208354A1 (en) 2020-04-16 2020-09-17 Apparatus and method for performing trusted measurement by introducing external hardware root of trust

Country Status (2)

Country Link
CN (1) CN111538993B (en)
WO (1) WO2021208354A1 (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111538993B (en) * 2020-04-16 2023-05-12 南京东科优信网络安全技术研究院有限公司 Device and method for introducing external hardware trust root to perform trusted measurement

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1967514A (en) * 2006-10-08 2007-05-23 深圳兆日技术有限公司 System and method to realize connection between terminal host computer and trusted platform module
CN101794362A (en) * 2010-01-22 2010-08-04 华北计算技术研究所 Trusted computation trust root device for computer and computer
CN201820230U (en) * 2010-01-22 2011-05-04 华北计算技术研究所 Computer and trusted-computing trusted root equipment for same
US20120011354A1 (en) * 2010-07-02 2012-01-12 Encryptakey, Inc. Boot loading of secure operating system from external device
CN104951701A (en) * 2015-06-10 2015-09-30 北京工业大学 Method for guiding terminal equipment operation system based on USB controller
CN111538993A (en) * 2020-04-16 2020-08-14 南京东科优信网络安全技术研究院有限公司 Device and method for performing credibility measurement by introducing external hardware trust root

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN100547515C (en) * 2005-07-15 2009-10-07 联想(北京)有限公司 Support the dummy machine system of Trusted Computing to reach the method that realizes Trusted Computing thereon
CN101515316B (en) * 2008-02-19 2011-09-28 北京工业大学 Trusted computing terminal and trusted computing method
CN102012979B (en) * 2010-11-15 2012-07-04 深圳市华威世纪科技股份有限公司 Embedded credible computing terminal
CN109522721A (en) * 2017-09-19 2019-03-26 中国科学院沈阳自动化研究所 A kind of starting method of the Industry Control credible embedded platform based on TPM
CN110334520A (en) * 2019-07-08 2019-10-15 北京可信华泰信息技术有限公司 The construction method and device of the credible calculating platform of dual Architecture

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1967514A (en) * 2006-10-08 2007-05-23 深圳兆日技术有限公司 System and method to realize connection between terminal host computer and trusted platform module
CN101794362A (en) * 2010-01-22 2010-08-04 华北计算技术研究所 Trusted computation trust root device for computer and computer
CN201820230U (en) * 2010-01-22 2011-05-04 华北计算技术研究所 Computer and trusted-computing trusted root equipment for same
US20120011354A1 (en) * 2010-07-02 2012-01-12 Encryptakey, Inc. Boot loading of secure operating system from external device
CN104951701A (en) * 2015-06-10 2015-09-30 北京工业大学 Method for guiding terminal equipment operation system based on USB controller
CN111538993A (en) * 2020-04-16 2020-08-14 南京东科优信网络安全技术研究院有限公司 Device and method for performing credibility measurement by introducing external hardware trust root

Also Published As

Publication number Publication date
CN111538993B (en) 2023-05-12
CN111538993A (en) 2020-08-14

Similar Documents

Publication Publication Date Title
US8544092B2 (en) Integrity verification using a peripheral device
US9589156B2 (en) System and method for intercept of UEFI block I/O protocol services for bios based hard drive encryption support
US9081911B2 (en) Mediating communication of a universal serial bus device
KR102403138B1 (en) Method for privileged mode based secure input mechanism
KR100938718B1 (en) Efi based mechanism to export platform management capabilities to the os
US10078754B1 (en) Volume cryptographic key management
CN111008379A (en) Firmware safety detection method of electronic equipment and related equipment
US7769993B2 (en) Method for ensuring boot source integrity of a computing system
US8065509B2 (en) Persistent security system and method
Tian et al. Making {USB} great again with {USBFILTER}
US10430589B2 (en) Dynamic firmware module loader in a trusted execution environment container
Winter et al. A hijacker’s guide to communication interfaces of the trusted platform module
WO2017099922A1 (en) System management mode disabling and verification techniques
US10853307B2 (en) System and method for a host application to access and verify contents within non-volatile storage of an information handling system
US9537738B2 (en) Reporting platform information using a secure agent
WO2021208354A1 (en) Apparatus and method for performing trusted measurement by introducing external hardware root of trust
US10796002B1 (en) Method and apparatus for establishing a root-of-trust path for a secure computer
US20230342472A1 (en) Computer System, Trusted Function Component, and Running Method
BRPI0903816A2 (en) secret code protection process and a computing device
US11461108B2 (en) Use of driver and wired connection to diagnose device using disk image
US20220129593A1 (en) Limited introspection for trusted execution environments
US11755745B2 (en) Systems and methods for monitoring attacks to devices
CN112181860A (en) Controller with flash memory simulation function and control method thereof
Sang et al. A tool to analyze potential I/O attacks against PCs
US11599364B2 (en) System and method for provide persistent companion software in an information handling system

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 20931461

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 20931461

Country of ref document: EP

Kind code of ref document: A1