Computer node security is the source and foundation of information system security. Trusted computing dual system architecture is an important implementation method to solve the security assurance by establishing the dual system of computing nodes, on the one hand, to achieve isolation on the other hand to achieve the active metrics of the system. This article systematically analyzes the dual architecture of trusted computing, summarizes the security assurance implementation of the dual architecture of trusted computing as the problem of trusted platform control module (TPCM) trusted root parallel access bus, and designs and implements it using ARM multi-core CPU architecture, and designs the basic hardware security assurance capabilities such as TPCM resource isolation, active metrics, secure communication and other key components of trusted cryptography module and trusted software base based on it, thus implementing the two core mechanisms of trustworthy computing, namely, trust chain construction and dynamic metrics, are implemented. The design of system integration in computing node devices based on this ARM multi-core CPU architecture is proposed, and the related design and implementation methods are proposed, and finally, the prototype implementation and test verification are performed on the Phytium CPU platform.
With the continuous maturity and development of single hardware security mechanism, it has been widely used in the field of information technology, but the single hardware mechanism has insufficient security guarantee in its own supporting drivers and other key programs. In response to this problem, this article proposes a trusted isolation model based on the noninterference theory and gives a formal proof. The realization is based on the trusted platform control module (TPCM) hardware mechanism by introducing a secure memory bar to provide a way to achieve a trusted dual-system isolation guarantee. The hardware interface of secure memory module is consistent with that of ordinary memory module, which is widely used. It can improve the security guarantee ability of trusted computing platform, and has a good reference value for the design and application of trusted computing platform equipment.
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.
hi@scite.ai
10624 S. Eastern Ave., Ste. A-614
Henderson, NV 89052, USA
Copyright © 2024 scite LLC. All rights reserved.
Made with 💙 for researchers
Part of the Research Solutions Family.