A new high-performance approach for offline replacement attack prevention in trusted clients

Trusted Computing has been a major research issue in recent years. Software integrity is a main part in a trusted computing environment. As a chain of invocations are involved in a computing system, it is imperative to build a trust relationship between various layers in the system. TLC is a novel approach proposed to build a trusted Linux system. However, it suffers from offline replacement problem. In this paper we propose a high-performance approach based on blacklist checking to countermeasure this problem. We have developed and presented an accelerated mechanism to maintain system performance during integrity checking phases. Tow main ideas are used for this purpose are synchronous cache consistency and blacklist partitioning with embedded blacklist identity. In addition, an analysis framework is developed for performance of the proposed approach that incorporates all important system and workload parameters.