抗电路板级物理攻击的操作系统防御技术研究  被引量：3

作　　者：张倩颖[1,4,5] 赵世军 ZHANG Qian-Ying;ZHAO Shi-Jun(College of Information Engineering,Capital Normal University,Beijing 100048,China;Institute of Software,Chinese Academy of Sciences,Beijing 100190,China;Huawei Technologies Co.,Ltd.,Beijing 100195,China;State Key Laboratory of Computer Architecture(Institute of Computing Technology,Chinese Academy of Sciences),Beijing 100190,China;Beijing Engineering Research Center of High Reliable Embedded System(Capital Normal University),Beijing 100048,China)

机构地区：[1]首都师范大学信息工程学院,北京100048 [2]中国科学院软件研究所,北京100190 [3]华为技术有限公司,北京100195 [4]计算机体系结构国家重点实验室(中国科学院计算技术研究所),北京100190 [5]高可靠嵌入式系统北京市工程研究中心(首都师范大学),北京100048

出　　处：《软件学报》2020年第10期3120-3146,共27页Journal of Software

基　　金：国家自然科学基金(61802375,61602325,61876111,61877040);北京市教委科技计划一般项目(KM20190028005);中国科学院计算技术研究所计算机体系结构国家重点实验室开放课题(CARCH201920)。

摘　　要：计算设备处理和存储日益增多的敏感信息,如口令和指纹信息等,对安全性提出更高要求.物理攻击技术的发展催生了一种通过攻击电路板级硬件组件来获取操作系统机密信息的攻击方法:电路板级物理攻击.该类攻击具有工具简单、成本低、易流程化等特点,极容易被攻击者利用形成黑色产业,是操作系统面临的新安全威胁和挑战.在处理器上扩展内存加密引擎可抵抗该类攻击,但是目前大部分计算设备并未配备该硬件安全机制.学术界和产业界提出软件方式抗电路板级物理攻击的操作系统防御技术,该类技术已成为近年来的研究热点.深入分析了该类技术的研究进展,总结其技术优势和不足,并探讨其发展趋势.首先,介绍了电路板级物理攻击的定义、威胁模型、现实攻击实例.之后,介绍软件方式抗电路板级物理攻击的操作系统防御技术所依赖的一些基础技术.然后,对该类防御技术的研究进展按照保护范围进行分类总结和归纳.最后,分析了该类防御技术的优势与不足,给出工程实现建议,并探讨该类防御技术未来的研究趋势.Computing devices are processing and storing more and more sensitive information,such as passwords and personal fingerprints,so higher security requirements are required for them.With the development of physical attacks,a new kind of attack called board level physical attacks is developed,and this kind of attack can obtain secrets in the operating system by attacking hardware components at the printed circuit board(PCB)level.This newly proposed attack only uses simple tools,its cost is inexpensive,and it can be streamlined simply,so it can be leveraged by attackers to form new underground industry easily.Therefore it is a new security threat and challenge for operating systems.A common defense against this kind of attack is to extend a specialized memory encryption engine to the CPU,but most current computing devices are not equipped with such hardware security mechanisms.Thus,the academic fields and industrial fields propose software-based techniques to defend board level physical attacks,and these techniques have been becoming a research hotspot in recent years.This paper deeply analyzes the development of these techniques,summarizes their advantages and disadvantages,and discusses their development trends.First,the paper introduces the definition,threat model and some real-world attack cases of the board level physical attacks.Second,the paper describes the building blocks relied by the software-based techniques to defense the board level physical attacks.Third,the paper makes a survey of and categorizes the related work on the software-based defense technology according to their protection domains.At last,the paper analyzes the advantages and disadvantages of the technology,gives suggestions on how to implement it in practice,and discusses some development trends of this technology.

关 键 词：内存保护 物理攻击 内存加密 内存完整性 

分 类 号：TP311[自动化与计算机技术—计算机软件与理论]