TPCM可信平台度量及控制设计

信息安全研究 ›› 2017, Vol. 3 ›› Issue (4): 310-315.

TPCM可信平台度量及控制设计

华大半导体有限公司上海201203

收稿日期:2017-04-13 出版日期:2017-04-13 发布日期:2017-04-13
通讯作者: 黄坚会
作者简介:黄坚会高级工程师，主要研究方向为可信安全.

The TPCM Platform Measurement and Control Design

Received:2017-04-13 Online:2017-04-13 Published:2017-04-13

摘要/Abstract

摘要： 提出一种可信平台控制模块(trusted platform control module, TPCM)平台度量及控制实现方法.该方法在保持主板原有设计的基础上，利用计算机主板已有的接口进行扩展设计，以TPCM为信任根对计算机平台进行可信度量.结合电源控制的实现，该方法可以从根本上解决计算机启动环境不可信问题.该方法在确保启动代码的可信性和完整性基础上，通过启动代码中植入的驱动及保护策略对启动环境进行检查确认.若检测到可信环境遭受破坏或设备固件代码被恶意篡改，则根据预先写在TPCM内部的安全策略进入非可信工作模式或阻止计算机继续启动等.该方法设计的TPCM对计算机有自主的、绝对的控制权.极端情况下可以采取关闭计算机、切断电源等绝对性保护措施.该方法不但可靠有效，而且实现成本低廉，安装简单.

关键词: 可信平台控制模块, 安全可信, 平台度量, 电源控制, 可信运行环境

Abstract: A trusted platform control module (TPCM) and a control method are proposed in this paper.This method is based on keeping the original motherboard design unchanged, and the TPCM is extended on the existed interface of the computer and measures the platform with the root of trust for measurement (RTM).Combined with the realization of the power control, it can solve the source of the boot untrusted problem fundamentally. In terms of keeping the credibility and integrity of the boot code, it checks the boot environment by inserting driver and protected policy into the boot code. If the trusted environment has been destroyed or the device firmware has been malicious tampered, it will enter untrusted operation environment or prevent the computer from been powered on per the security policy, which have been written in the TPCM in advance. The TPCM designed by this method has autonomous and absolute control right to the computer. Once the system out of control occurred caused by malicious code intrusion, the TPCM can protect the computer from been attacked through cut off power and any other absolute protection solutions. It is not only reliable and effective, but also low cost and easy to be installed.

Key words: trusted platform control module (TPCM), security and trust, platform measurement, power control, trusted work environment

黄坚会. TPCM可信平台度量及控制设计[J]. 信息安全研究, 2017, 3(4): 310-315.

参考文献

［1］Nibaldi G H. Specification of a trusted computing base (TCB)［EBOL］. (20161110) ［20170215］.. https:www.resear chgate.netpublication235093228_Specification_of_a_Trusted_Computing_Base_TCB［2］Proudler G, Chen Liqun, Dalton C. Trusted Computing Platforms［M］. Berlin: Springer, 2014［3］Trusted Computing Group. TPM Main Specification［EBOL］. (20110301) ［20170215］. http:www.trustedcomputing group.orgtpmmainspecification［4］Trusted Computing Group. PC Client Platform TPM Profile (PTP) Specification［EBOL］. (20150101) ［20170215］. http:www.trustedcomputinggroup.orgpcclientplatformtpmprofileptpspecification［5］Shi W. On design of a trusted software base with support of TPCM［M］ Trusted Systems. Berlin: Springer, 2009［6］黄强, 常乐, 张德华, 等. 基于可信计算基的主机可信安全体系结构研究［J］. 信息网络安全, 2016, 187(7): 7884［7］张兴, 沈昌祥. 一种新的可信平台控制模块设计方案［J］. 武汉大学学报, 2008, 33(10): 10111014［8］邢彬, 刘吉强, 韩臻. 一种可信计算平台完整性度量的新模型［J］. 信息网络安全, 2016, 186(6): 814［9］黄坚会, 喻剑, 等. 可信平台控制模块规范［R］. 北京: 中关村可信计算产业联盟, 2016［10］黄坚会, 石文昌. 基于ATX主板的TPCM主动度量及电源控制设计［J］. 信息网络安全, 2016, 191(11): 15［11］韩佶洋. 主板常用芯片及电路维修手册［M］. 北京: 清华大学出版社, 2008［12］国家密码管理局. GMT 0004—2012. SM3密码杂凑算法［S］. 北京: 中国标准出版社, 2012［13］国家密码管理局. GBT29829—2013. 可信计算密码支撑平台功能与接口规范［S］. 北京: 标准出版社, 2013［14］中国科学院计算技术研究所. 龙芯3A 处理器数据手册［R］. 北京: 北京龙芯中科技术服务中心有限公司, 2009

[1]	孙瑜. 可信软件基技术研究及应用[J]. 信息安全研究, 2017, 3(4): 316-322.
[2]	刘刚. 云环境下可信服务器平台关键技术研究[J]. 信息安全研究, 2017, 3(4): 323-331.