CN109766688B - 一种基于Merkle树的Linux程序运行时验证与管控方法和系统 - Google Patents
一种基于Merkle树的Linux程序运行时验证与管控方法和系统 Download PDFInfo
- Publication number
- CN109766688B CN109766688B CN201811488026.XA CN201811488026A CN109766688B CN 109766688 B CN109766688 B CN 109766688B CN 201811488026 A CN201811488026 A CN 201811488026A CN 109766688 B CN109766688 B CN 109766688B
- Authority
- CN
- China
- Prior art keywords
- program
- operating system
- linux
- segment
- measurement
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 31
- 238000012795 verification Methods 0.000 title claims description 21
- 238000005259 measurement Methods 0.000 claims abstract description 30
- 238000002360 preparation method Methods 0.000 claims description 6
- 230000006870 function Effects 0.000 claims description 5
- 238000010276 construction Methods 0.000 claims description 4
- 230000009471 action Effects 0.000 claims description 2
- 238000013507 mapping Methods 0.000 claims description 2
- 230000007246 mechanism Effects 0.000 abstract description 3
- 238000012545 processing Methods 0.000 abstract description 3
- 238000007726 management method Methods 0.000 description 10
- 238000005516 engineering process Methods 0.000 description 9
- 230000008859 change Effects 0.000 description 3
- 238000010586 diagram Methods 0.000 description 3
- 238000005192 partition Methods 0.000 description 3
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000008569 process Effects 0.000 description 2
- 238000012550 audit Methods 0.000 description 1
- 238000004364 calculation method Methods 0.000 description 1
- 230000006378 damage Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000000691 measurement method Methods 0.000 description 1
- 238000005457 optimization Methods 0.000 description 1
- 238000012827 research and development Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Landscapes
- Storage Device Security (AREA)
Abstract
Description
Claims (7)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201811488026.XA CN109766688B (zh) | 2018-12-06 | 2018-12-06 | 一种基于Merkle树的Linux程序运行时验证与管控方法和系统 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201811488026.XA CN109766688B (zh) | 2018-12-06 | 2018-12-06 | 一种基于Merkle树的Linux程序运行时验证与管控方法和系统 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN109766688A CN109766688A (zh) | 2019-05-17 |
CN109766688B true CN109766688B (zh) | 2021-05-18 |
Family
ID=66450556
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201811488026.XA Active CN109766688B (zh) | 2018-12-06 | 2018-12-06 | 一种基于Merkle树的Linux程序运行时验证与管控方法和系统 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN109766688B (zh) |
Families Citing this family (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111177703B (zh) * | 2019-12-31 | 2023-03-31 | 青岛海尔科技有限公司 | 操作系统数据完整性的确定方法及装置 |
CN111273952B (zh) * | 2020-02-15 | 2023-08-11 | 超越科技股份有限公司 | 一种可信恢复更新的方法及装置 |
CN113553231B (zh) * | 2021-07-01 | 2023-08-22 | 江苏电力信息技术有限公司 | 一种基于安全芯片的嵌入式操作系统运行环境监控方法 |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101310256A (zh) * | 2005-11-14 | 2008-11-19 | 微软公司 | 异步运行时编译 |
CN102986163A (zh) * | 2010-03-05 | 2013-03-20 | 交互数字专利控股公司 | 给设备提供安全性的方法和装置 |
CN108460293A (zh) * | 2017-02-22 | 2018-08-28 | 北京大学 | 一种应用程序完整性多级检查机制 |
-
2018
- 2018-12-06 CN CN201811488026.XA patent/CN109766688B/zh active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101310256A (zh) * | 2005-11-14 | 2008-11-19 | 微软公司 | 异步运行时编译 |
CN102986163A (zh) * | 2010-03-05 | 2013-03-20 | 交互数字专利控股公司 | 给设备提供安全性的方法和装置 |
CN108460293A (zh) * | 2017-02-22 | 2018-08-28 | 北京大学 | 一种应用程序完整性多级检查机制 |
Non-Patent Citations (2)
Title |
---|
Optimal Parameter Selection for Efficient Memory Integrity Verification Using Merkle Hash Trees;Dan Williams;《Proceedings of the Third IEEE International Symposium on Network Computing and Applications》;20041108;第1-6页 * |
基于可信计算的动态完整性度量架构;刘孜文;《电子与信息学报》;20100430;第875-879页 * |
Also Published As
Publication number | Publication date |
---|---|
CN109766688A (zh) | 2019-05-17 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10049215B2 (en) | Apparatus and method for preventing access by malware to locally backed up data | |
US10685122B2 (en) | Portable executable and non-portable executable boot file security | |
US7836299B2 (en) | Virtualization of software configuration registers of the TPM cryptographic processor | |
US7421588B2 (en) | Apparatus, system, and method for sealing a data repository to a trusted computing platform | |
US7653819B2 (en) | Scalable paging of platform configuration registers | |
US9069992B1 (en) | System and method for reducing data loss prevention scans | |
US9147052B2 (en) | Provisioning a computing system for digital rights management | |
US8850212B2 (en) | Extending an integrity measurement | |
US8213618B2 (en) | Protecting content on client platforms | |
US8122514B2 (en) | Software enhanced trusted platform module | |
US20050262571A1 (en) | System and method to support platform firmware as a trusted process | |
US10943013B2 (en) | Maintaining keys for trusted boot code | |
CN110263545B (zh) | 一种基于Android系统的启动过程完整性度量检测方法 | |
US20110314279A1 (en) | Single-Use Authentication Methods for Accessing Encrypted Data | |
US20090006868A1 (en) | Secure storage for digital rights management | |
JP5346608B2 (ja) | 情報処理装置およびファイル検証システム | |
EP2126770B1 (en) | Trusted computing entities | |
CN112800429B (zh) | 一种基于基础性的uefi bios固件系统中驱动程序保护的方法 | |
TW201500960A (zh) | 在配有適用統一可延伸韌體介面(uefi)之韌體之計算裝置中的安全性變數變化檢測技術 | |
CN109766688B (zh) | 一种基于Merkle树的Linux程序运行时验证与管控方法和系统 | |
JP2005527019A (ja) | マルチトークンのシール及びシール解除 | |
US8646096B2 (en) | Secure time source operations for digital rights management | |
US20170255775A1 (en) | Software verification systems with multiple verification paths | |
CN102722665A (zh) | 基于tpm/vtpm的可信程序列表生成方法及系统 | |
US11397815B2 (en) | Secure data protection |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
CB02 | Change of applicant information | ||
CB02 | Change of applicant information |
Address after: Luohu District Shenzhen Shennan Road 518000 No. 4020 Guangdong provincial power dispatching center building Applicant after: Shenzhen Power Supply Co.,Ltd. Applicant after: Institute of Software, Chinese Academy of Sciences Applicant after: China South Power Grid International Co.,Ltd. Address before: 100190 No. four, 4 South Street, Haidian District, Beijing, Zhongguancun Applicant before: Institute of Software, Chinese Academy of Sciences Applicant before: China South Power Grid International Co.,Ltd. Applicant before: Shenzhen Power Supply Co.,Ltd. |
|
CB03 | Change of inventor or designer information | ||
CB03 | Change of inventor or designer information |
Inventor after: Lv Zhining Inventor after: Xi Wei Inventor after: Kuang Xiaoyun Inventor after: Yao Hao Inventor after: Yu Yang Inventor after: Ning Baifeng Inventor after: Luo Weifeng Inventor after: Liu Wei Inventor after: Deng Wei Inventor after: Qin Yu Inventor after: Chu Xiaobo Inventor after: Zhao Shijun Inventor after: Feng Wei Inventor before: Qin Yu Inventor before: Ning Baifeng Inventor before: Luo Weifeng Inventor before: Liu Wei Inventor before: Deng Wei Inventor before: Chu Xiaobo Inventor before: Zhao Shijun Inventor before: Feng Wei Inventor before: Kuang Xiaoyun Inventor before: Xi Wei Inventor before: Yao Hao Inventor before: Yu Yang Inventor before: Lv Zhining |
|
GR01 | Patent grant | ||
GR01 | Patent grant |