Title :
Design and Implementation of an Integrity Measurement System Based on Windows Trusted Computing Platform
Author :
Yang, Yang ; Zhang, Huanguo ; Wan, Li ; Zou, Bingyu
Author_Institution :
Sch. of Comput., Wuhan Univ., Wuhan
Abstract :
This paper presents the design and implementation of an integrity measurement system based on Windows trusted computing platform. The trust chain is established from the BIOS up to the application layer, where the executable codes are taken the load-time measurements before execution. And the measurement system can generate an integrity proof for TPM-based remote attestation. In order to accurately reflect runtime integrity of critical applications, a light weight Clark-Wilson model is introduced for verify information flow integrity guarantee. Our experimental system strengthens the security posture of the platform. With the analysis of the tradeoff between performance and security, our system gives great consideration to the impact which the measurements cause to system performance.
Keywords :
grid computing; security of data; BIOS; TPM-based remote attestation; Windows trusted computing platform; integrity measurement system; Computer architecture; Computer viruses; Grid computing; Information security; Invasive software; Kernel; Operating systems; Performance analysis; Runtime; Software measurement; CW_Lite model; Trusted computing; information flow; integrity measurement; transitive trust;
Conference_Titel :
Young Computer Scientists, 2008. ICYCS 2008. The 9th International Conference for
Conference_Location :
Hunan
Print_ISBN :
978-0-7695-3398-8
Electronic_ISBN :
978-0-7695-3398-8
DOI :
10.1109/ICYCS.2008.315
