A Trusted Computing Model Based on Code Authorization

Author

Wei, Guoheng ; Zhou, Xueguang ; Zhang, Huanguo

Author_Institution

Coll. of Electron. Eng., Naval Univ. of Eng., Wuhan

fYear

2008

fDate

23-25 May 2008

Firstpage

495

Lastpage

499

Abstract

The capabilities trusted computing provides have the potential to radically improve the security and robustness of present systems. By combining present models for trusted computing with the thought of code authorization, we put forward a code authorization based Operation System model for Trusted Computing. This model solves the foundation security problems in the primitive model by creating a trusted chain from a core root of trust to all the Virtual Security Units (VSUs). The Trusted Platform Module (TPM) provides various security services, such as integrity checking and sealed storage, for all the VSUs and Authorization Describing Tables (ADTs). Moreover, the robustness of standard part in NGSCB is enforced for the security protection from the code authorization. This idea of code authorization can also be applied to most of present models that adopt the idea of box partition for trusted computing and improve their security to some extent.

Keywords

authorisation; operating systems (computers); authorization describing table; box partition method; code authorization-based operation system model; integrity checking; trusted computing model; trusted platform module; virtual security unit; Authorization; Computer architecture; Cryptography; Hardware; Operating systems; Protection; Robustness; Security; Virtual manufacturing; Voice mail; code authorization; informaion information; trusted computing; virtual security units;

fLanguage

English

Publisher

ieee

Conference_Titel

Information Processing (ISIP), 2008 International Symposiums on

Conference_Location

Moscow

Print_ISBN

978-0-7695-3151-9

Type

conf

DOI

10.1109/ISIP.2008.77

Filename

4554138