检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
机构地区:[1]解放军信息工程大学计算机科学与技术系,郑州450002
出 处:《小型微型计算机系统》2013年第12期2809-2813,共5页Journal of Chinese Computer Systems
基 金:国家"八六三"高技术研究发展计划目标导向项目(2009AA01Z434)资助
摘 要:终端代码防篡改技术研究对保护网络终端安全具有重要意义,是信息安全研究的热点问题之一.在分析常见网络终端体系结构脆弱性问题的基础上,提出一种以硬件为核心的终端代码防篡改方案.该方案通过构建独立可执行环境来解决程序运行过程中的完整性保护问题,通过物理隔离和强制访问控制解决数据机密性保护问题.最终采用通用USB-KEY和部分终端代码仿真实现独立可执行设备原型,并对其主要功能和性能进行了测试.实验结果表明,该方案能够利用较低成本的硬件资源,为网络终端内目标程序提供防篡改保护.The research of terminal code tamper-resistant technology is important to network endpoint security protection which is a hot topic in information security research. With the analysis of vulnerability in common network terminal architecture, a tamper-resistant method which is based on hardware was presented. The method uses the stand-alone executable environment to deal with the issue of integrity protection, and uses the physical isolation and mandatory access control to deal with the issue of confidentiality protection. At last, a simulation prototype system based on proposed method was constructed, which included a general-purpose USB-KEY hard- ware and some PC software modules. The testing of prototype system contains functions and performance test, and the result shows that proposed method, which is based on low-cost hardware resources, is able to provide tamper-resistant protection for target program in the network terminal.
分 类 号:TP309[自动化与计算机技术—计算机系统结构]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.117