论文信息 - Study of Trustworthiness Measurement and Kernel Modules Accessing Address Space of Any Process

Study of Trustworthiness Measurement and Kernel Modules Accessing Address Space of Any Process

Trustworthiness measurement is the base and important supporting technology of Trusted Computing. The main objective of trustworthiness measurement is that, how to estimate the trustworthiness of different objects by appropriate policies. In measurement, accessing the address space of measured objects and obtaining the various datum and evidences are considered firstly. Aiming to this problem, this paper presents the primary measurement system architecture, and puts forward three methods of MA(Measurement Agent)in user space invoking MMK(Measurement Module in Kernel)in kernel space. In addition, the principal and realization of accessing a process address space is proposed, including address remapping, switching the CR3 manually and by kernel thread. Finally, three methods are compared qualitatively, and performance consumption is listed by experiment.

Liang Wang | Ce Zhang | Gang Cui | Bin Jin

[1] Peng Ning,et al. HIMA: A Hypervisor-Based Integrity Measurement Agent , 2009, 2009 Annual Computer Security Applications Conference.

[2] Xie Bing,et al. Framework Supporting Software Assets Evaluation on Trustworthiness , 2010 .

[3] Scott A. Rotondo. Trusted Computing Group , 2011, Encyclopedia of Cryptography and Security.

[4] Gyungho Lee,et al. Micro-Architecture Support for Integrity Measurement on Dynamic Instruction Trace , 2010, J. Information Security.

[5] Zi-wen Liu,et al. TPM-Based Dynamic Integrity Measurement Architecture: TPM-Based Dynamic Integrity Measurement Architecture , 2010 .

[6] Trent Jaeger,et al. PRIMA: policy-reduced integrity measurement architecture , 2006, SACMAT '06.

[7] Trent Jaeger,et al. Design and Implementation of a TCG-based Integrity Measurement Architecture , 2004, USENIX Security Symposium.

[8] Carl E. Landwehr,et al. Basic concepts and taxonomy of dependable and secure computing , 2004, IEEE Transactions on Dependable and Secure Computing.

[9] Weizhong Shao,et al. Framework Supporting Software Assets Evaluation on Trustworthiness: Framework Supporting Software Assets Evaluation on Trustworthiness , 2010 .

[10] Zhou Ming. Research and Development of Trusted Computing , 2004 .

[11] Xiao-Yong Li,et al. Adaptive Dynamic Trust Measurement and Prediction Model Based on Behavior Monitoring: Adaptive Dynamic Trust Measurement and Prediction Model Based on Behavior Monitoring , 2009 .