检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
作 者:王效武[1] 刘英[1] 闫石 WANG Xiao-wu;LIU Ying;YAN Shi(No.30 Institute of CETC,Chengdu Sichuan 610041,China)
机构地区:[1]中国电子科技集团公司第三十研究所,四川成都610041
出 处:《通信技术》2020年第4期993-997,共5页Communications Technology
摘 要:基于对目前可信计算信任链及度量基准值采集流程存在的问题,提出了软件源的可信管控模型,实现软件的安全认定、度量基准值统一计算采集以及可信第三方的集中管控,为软件的可信运行奠定了基础,降低了可信度量值采集工作的复杂度,对软件源的可信管控实施具有一定的指导意义。此外,进行了软件可信表征格式和基于可信表征的可信度量流程设计,将软件源的可信延伸至软件加载的可信和软件运行的可信,较大程度地提升了软件全生命周期的可信证明强度。Based on the problems existing in the current trust chain and the collection process of measurement benchmarks,a trusted management and control model for software sources is proposed.It implements unified calculation and collection of software security confirmation and measurement benchmarks,centralizes the management and control by trusted third parties,which lays the foundation for the trusted operation of software,reduces the complexity of collecting trusted metrics,and has certain guiding significance for the implementation of trusted management and control of software sources.In addition,the software trusted representation format and the trusted measurement process design based on the trusted representation are done,and the trustworthiness of software sources is extended to the trustworthiness of software loading and credibility of software operation,which has greatly enhanced the credible proof strength of the software’s entire life cycle.
分 类 号:TP393.08[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.145
