检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
机构地区:[1]国防科学技术大学计算机学院,湖南长沙410073
出 处:《信息网络安全》2016年第3期21-27,共7页Netinfo Security
基 金:国家自然科学基金[61572514;61502510]
摘 要:可信执行环境(TEE)作为一种通过隔离的方法保护数据和程序的技术,与传统安全技术相比,能够主动防御来自外部的安全威胁,更有效地保障自身安全。随着内置TrustZone技术的ARM处理器的广泛应用,可信执行环境开发受到重视。目前已经出现了很多基于TrustZone的开源项目,但因缺乏相应标准等原因给应用开发带来了障碍。文章以OpenTEE为例,深入研究了可信执行环境的整体结构,分析了软件层的组件构成和运行流程,提出了可信应用的开发方法。通过实验,比较分析了几种可信执行环境在部署难易度、开发难易度、内存占用等方面的性能。文章提出的可信执行环境构建方法具有良好的软件结构,易于开发。As a technique for protecting data and programs,compared with the traditional security technology,the trusted execution environment(TEE) can actively prevent threats from outside and ensure the safety of host more effectively by means of hardware aided isolation.With the extensive application of the ARM processor with the built-in TrustZone,trusted execution environment development has been paid increasing attentions.At present,there have been many open source TEE projects based on TrustZone,but their applications still face with problems because of the lack of corresponding standards.Taking Open-TEE as an example,this paper deeply studies the overall structure of TEE,analyzes the architecture of software layer and operational process,and proposes the development method of trusted application.The performances of deployment,development and memory footprint of some TEEs are compared through experiments.The development method of TEE proposed in this paper has good software architecture and is easy to be developed.
关 键 词:TRUSTZONE 可信执行环境 Open-TEE ARM
分 类 号:TP309[自动化与计算机技术—计算机系统结构]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.3