基于硬件协同的内存完整性保护方法  被引量:1

Memory integrity protection method based on hardware cooperation

在线阅读下载全文

作  者:马海峰[1,2] 关明山[1] 姚念民 岳新[1] 杜文杰[3] 战福瑞[3] 

机构地区:[1]黑龙江科技大学计算机与信息工程学院,哈尔滨150027 [2]哈尔滨工程大学自动化学院,哈尔滨150001 [3]哈尔滨工程大学计算机科学技术与技术学院,哈尔滨150001

出  处:《计算机应用研究》2015年第9期2769-2773,2783,共6页Application Research of Computers

基  金:黑龙江省教育厅科学技术研究项目(12533052);国家自然科学基金资助项目(61073047)

摘  要:目前针对存储系统的攻击行为层出不穷,已出现多种存储器保护机制,但其大多是在处理器中加入计算部件,需较大空间存储校验数据,这不但增加了处理器负担,存储开销也很大。针对此问题进行了研究,依据协同认证的思想,提出一种附加硬件的内存完整性保护方法 MIPIC,其关键是在内存中加入一种具有计算功能的硬件部件,由处理器与该部件协同完成内存数据完整性校验。将MIPIC与CHTree比较,从存储增益等角度进行了性能分析,从认证方案性能等方面进行了实验模拟。分析和实验证明,MIPIC有更低的计算开销和存储开销。Recently, the attacks focus on computer storage system are emerging everywhere. Many memory protection mecha- nisms have been proposed, but most of them are joined calculating unit in the processor and need store verification data. These not only increase the computation burden of the processor, but also increase storage overhead. Begin to study for this problem, based on the idea of collaborative certification, this paper proposed a memory integrity protection method of append hardware called MIPIC. The key of the MIPIC was joining a hardware unit to the memory with calculating functions, thus the processor was collaborative with the unit to finish memory data verification. The MIPIC compared with the CHTree, performance analysis was made from the perspective of storage gain, etc. Simulations and experimental simulation were finished from the perspective of verification scheme performance, etc. The performance analysis and experiment show that the MIPIC has lower computation- al overhead and storage overhead.

关 键 词:存储器 完整性 协同校验 缓冲型哈希树 

分 类 号:TP309.1[自动化与计算机技术—计算机系统结构]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象