CAJ | 학술논문

针对目前各种嵌入式终端的安全需求,借鉴普通安全PC中TPM的应用情况,结合操作系统微内核技术,提出一种嵌入式可信终端设计方案,该方案基于可信根TCM,实现了自启动代码、操作系统到上层应用程序的"自下而上"的可信链传递,适用于嵌入式终端的安全应用.最后,通过设计一个试验系统,重点阐述了可信启动的具体实现步骤,并分析了因此带来的性能变化.
침대목전각충감입식종단적안전수구,차감보통안전PC중TPM적응용정황,결합조작계통미내핵기술,제출일충감입식가신종단설계방안,해방안기우가신근TCM,실현료자계동대마、조작계통도상층응용정서적"자하이상"적가신련전체,괄용우감입식종단적안전응용.최후,통과설계일개시험계통,중점천술료가신계동적구체실현보취,병분석료인차대래적성능변화.
According to the nowadays security requirement faced by embedded terminal,a design of embedded trusted terminal system is proposed to resolve the security problem referring to TPM application for the common security computer and microkemel technology.On basis of the TCM(trusted cryptography module)this scheme realizes trusted Bootloader,trusted operating system,trusted application program and constructs a integrated trusted chain from bottom to top,which is used in many security aress.Based on these,an experimental prototype is provided as an example to demonstrate the steps of implementing the trusted setup,and the result influence of performance is analyzed.