[go: up one dir, main page]

CN109241744A - A kind of creditable calculation modules and the credible starting method using the module - Google Patents

A kind of creditable calculation modules and the credible starting method using the module Download PDF

Info

Publication number
CN109241744A
CN109241744A CN201810989645.0A CN201810989645A CN109241744A CN 109241744 A CN109241744 A CN 109241744A CN 201810989645 A CN201810989645 A CN 201810989645A CN 109241744 A CN109241744 A CN 109241744A
Authority
CN
China
Prior art keywords
measurement
module
computing platform
trusted
system kernel
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201810989645.0A
Other languages
Chinese (zh)
Inventor
赵保华
高昆仑
王树才
王志皓
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
State Grid Corp of China SGCC
Global Energy Interconnection Research Institute
Original Assignee
State Grid Corp of China SGCC
Global Energy Interconnection Research Institute
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by State Grid Corp of China SGCC, Global Energy Interconnection Research Institute filed Critical State Grid Corp of China SGCC
Priority to CN201810989645.0A priority Critical patent/CN109241744A/en
Publication of CN109241744A publication Critical patent/CN109241744A/en
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/03Indexing scheme relating to G06F21/50, monitoring users, programs or devices to maintain the integrity of platforms
    • G06F2221/034Test or assess a computer or a system

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Storage Device Security (AREA)

Abstract

本发明提供了一种可信计算模块及应用该模块的可信启动方法,该系统包括:复位控制单元、可信存储单元、可信度量单元、可信恢复单元,复位控制单元与计算平台的复位控制电路连接,控制计算平台进入复位状态;可信存储单元存储计算平台启动的备份数据信息;可信度量单元对计算平台启动的待度量信息进行度量生成度量结果;当度量结果为可信时,可信度量单元控制计算平台可信启动;当度量结果为不可信时,可信恢复单元将待度量信息替换为可信存储单元中对应的备份数据信息。实现了对计算平台复位状态的控制,并实现了计算平台的可信恢复,提高了计算平台的防御能力,保障了计算平台的安全启动。

The invention provides a trusted computing module and a trusted startup method using the module. The system includes: a reset control unit, a trusted storage unit, a trusted measurement unit, a trusted recovery unit, a reset control unit and a computing platform. The reset control circuit is connected to control the computing platform to enter the reset state; the trusted storage unit stores the backup data information started by the computing platform; the trusted measurement unit measures the information to be measured started by the computing platform to generate a measurement result; when the measurement result is credible , the trusted measurement unit controls the trusted startup of the computing platform; when the measurement result is untrustworthy, the trusted recovery unit replaces the information to be measured with the corresponding backup data information in the trusted storage unit. The control of the reset state of the computing platform is realized, and the trusted recovery of the computing platform is realized, the defense capability of the computing platform is improved, and the safe startup of the computing platform is guaranteed.

Description

A kind of creditable calculation modules and the credible starting method using the module
Technical field
The present invention relates to trust computing fields, and in particular to a kind of creditable calculation modules and the credible starting using the module Method.
Background technique
Confidentiality, integrality and availability are the targets that computer security is pursued.Wherein confidentiality ensure that sensitive information Access be limited to certain special groups.Completeness guarantee's information will not arbitrarily be distorted, and embody people to information Trusting degree.Availability then indicates that people are desired to information resources and uses ability.With the quick hair of computer technology Exhibition, computer attack quantity is in increasing trend every year, and the number of attack is more and more frequent.With computer virus, back door, wooden horse Research and development but also computer security is faced with more and more challenges.Rogue program customizes, bottom to pass The antivirus software based on virus base and Virtual Machine Mechanism of system seems that some are insufficient in dealing with this kind of attack.
Credible (i.e. the behavior of platform is to execute in a predetermined manner) of system platform, is largely dependent upon meter It calculates the integrality of platform, and traditional computing platform start-up course and does not have the function of detecting started element integrality. With the development of reliable computing technology, to apply trust computing in the clean boot of computing platform, still After existing credible Starting mode needs to carry out all starting information in computing platform whole measurements, just it is capable of determining whether to open Dynamic computing platform, required measuring period is long, causes the credible starting efficiency of computing platform low, and existing credible Starting mode There are hidden danger for safety, poor to the defence capability of the abnormal Starting mode such as outside invasion.
Summary of the invention
The technical problem to be solved in the present invention is that overcome in the prior art credible Starting mode need in computing platform All starting information carry out whole measurements after, be just capable of determining whether starting computing platform, required measuring period is long, causes to calculate Platform credible starting efficiency is low, and there are hidden danger for the safety of existing credible Starting mode, abnormal to outside invasion etc. The problems such as defence capability of Starting mode is poor.
According in a first aspect, the embodiment of the invention provides a kind of creditable calculation modules, comprising: reset control unit, can Believe storage unit, credible metric element, trusted recovery unit, wherein the reset control for resetting control unit and computing platform Circuit connection processed controls the computing platform and enters reset state;The trusted storage unit stores the computing platform starting Backup data information;The credible metric element is measured to what the computing platform started to metric, generation degree Measure result;When the measurement results are credible, the credible metric element controls the credible starting of computing platform;When described When measurement results are insincere, the trusted recovery unit by it is described replace with to metric it is right in the trusted storage unit The backup data information answered.
With reference to first aspect, in the first embodiment of first aspect, it is described to metric include: bootstrap, System kernel to be run and system and application program, the credible metric element include: the first metric module, described for calling Bootstrap guides program measurement to the bootstrap, generates the first measurement results;Bootstrap starting module, when When first measurement results are that measurement passes through, the bootstrap starting module is used to take to reset control unit transmission Disappear reseting controling signal, controls the computing platform and loads and start the bootstrap;Second metric module, for calling System kernel to be run is stated, system kernel measurement is carried out to the system kernel to be run, generates the second measurement results;In system Core runs module, when second measurement results are that measurement passes through, system kernel operation module by control it is described based on It calculates platform and runs the system kernel to be run;Third metric module, for calling the system and application program, to the system System and application program carry out system and application program measurement, generate third measurement results;Credible starting module, when the third degree When amount result is that measurement passes through, the credible starting module is for controlling the credible starting of the computing platform.
With reference to first aspect, in the second embodiment of first aspect, when the measurement results of first metric module Obstructed out-of-date to measure, the bootstrap is replaced with the backup in the backup data information and drawn by the trusted recovery unit Lead sequence;First metric module again measures the backup bootstrap, generates the first new measurement results.
With reference to first aspect, in the third embodiment of first aspect, second metric module includes: to be wait run System kernel acquisition submodule, for calling the system kernel to be run;Time judging submodule, for judge to obtain it is described to Whether the time of operating system kernel is in default measurement time threshold;Second measurement results generate submodule, when the time When in the default measurement time threshold, second measurement results generate submodule and are used for the system kernel to be run System kernel measurement is carried out, the second measurement results are generated.
With reference to first aspect, in the 4th embodiment of first aspect, second metric module further include: signal is removed Pin module, when the time is not in the default measurement time threshold, the signal revocation submodule is for cancelling institute It states bootstrap starting module and is sent to the reset control unit and cancel reseting controling signal, control the computing platform again Into reset state.
With reference to first aspect, in the 5th embodiment of first aspect, the credible metric element further includes fourth It measures module and signal cancels module, when second measurement results are that measurement is obstructed out-of-date, the trusted recovery unit is used for will The system kernel to be run replaces with the standby system kernel in the backup data information;The fourth amount module is used for System kernel measurement is carried out to the standby system kernel, generates fourth amount result;When the fourth amount result is measurement By when, signal revocation module sends cancellation to the resets control unit for cancelling the bootstrap starting module Reseting controling signal controls the computing platform and reenters reset state.
With reference to first aspect, in the sixth embodiment of first aspect, the creditable calculation modules further include: password is calculated Method unit, the cryptographic algorithm unit call each password for providing a variety of cryptographic algorithms, for the creditable calculation modules Algorithm executes Password Operations, alternatively, calling each cryptographic algorithm to hold by the creditable calculation modules for the computing platform Row Password Operations.
With reference to first aspect, in the 7th embodiment of first aspect, the credible metric element further includes first opening Dynamic to terminate module, when the fourth amount result is that measurement is obstructed out-of-date, the first start-stop module is described for controlling Computing platform terminates to start, and generates and repair prompting message to personnel.
With reference to first aspect, in the 8th embodiment of first aspect, the credible metric element further includes second opening Dynamic to terminate module, when the third measurement results are that measurement is obstructed out-of-date, the second start-stop module is described for controlling Computing platform terminates to start, and generates and repair prompting message to personnel.
According to second aspect, the embodiment of the invention provides a kind of credible starting methods of creditable calculation modules, comprising: control It makes the computing platform and is in reset state;The bootstrap for calling the computing platform guides the bootstrap Program measurement, generates the first measurement results;When first measurement results are that measurement passes through, cancel the computing platform and be in The control of reset state controls the computing platform and loads and start the bootstrap;Call the to be shipped of the computing platform Row system kernel carries out system kernel measurement to the system kernel to be run, generates the second measurement results;When described second degree When amount result is that measurement passes through, the computing platform runs the system kernel to be run;The system for calling the computing platform And application program, system is carried out to the system and application program and application program is measured, generates third measurement results;When described When third measurement results are that measurement passes through, the credible starting of the computing platform is controlled.
Technical solution of the present invention has the advantages that
Creditable calculation modules provided in an embodiment of the present invention, comprising: reset control unit, trusted storage unit, confidence level Unit, trusted recovery unit are measured, which realizes by resetting control unit to computing platform reset state It directly controls, and realizes the measurement to computing platform start-up course, ensured the secure and trusted starting of computing platform, this Outside, also the measurement results of computing platform be it is insincere when, by trusted recovery unit to realize computing platform wait measure Information carries out trusted recovery, improves the defence capability of entire computing platform, has ensured the clean boot of computing platform.
Detailed description of the invention
It, below will be to specific in order to illustrate more clearly of the specific embodiment of the invention or technical solution in the prior art Embodiment or attached drawing needed to be used in the description of the prior art be briefly described, it should be apparent that, it is described below Attached drawing is some embodiments of the present invention, for those of ordinary skill in the art, before not making the creative labor It puts, is also possible to obtain other drawings based on these drawings.
Fig. 1 is the structural schematic diagram of creditable calculation modules in the embodiment of the present invention;
Fig. 2 is another structural schematic diagram of creditable calculation modules in the embodiment of the present invention;
Fig. 3 is the structural schematic diagram of credible metric element in the embodiment of the present invention;
Fig. 4 is the structural schematic diagram of the second metric module in the embodiment of the present invention in credible metric element;
Fig. 5 is the flow chart of the credible starting method of creditable calculation modules in the embodiment of the present invention.
Specific embodiment
Technical solution of the present invention is clearly and completely described below in conjunction with attached drawing, it is clear that described implementation Example is a part of the embodiment of the present invention, instead of all the embodiments.Based on the embodiments of the present invention, ordinary skill Personnel's every other embodiment obtained without making creative work, shall fall within the protection scope of the present invention.
In the description of the present invention, it should be noted that term " first ", " second ", " third ", " the 4th " are only used for retouching Purpose is stated, relative importance is not understood to indicate or imply.
In the description of the present invention, it should be noted that unless otherwise clearly defined and limited, term " installation ", " phase Even ", " connection " shall be understood in a broad sense, for example, it may be being fixedly connected, may be a detachable connection, or be integrally connected;It can To be mechanical connection, it is also possible to be electrically connected;It can be directly connected, can also indirectly connected through an intermediary, it can be with It is the connection inside two elements, can be wireless connection, be also possible to wired connection.For those of ordinary skill in the art For, the concrete meaning of above-mentioned term in the present invention can be understood with concrete condition.
As long as in addition, the non-structure each other of technical characteristic involved in invention described below different embodiments It can be combined with each other at conflict.
Embodiment 1
The embodiment of the invention provides a kind of creditable calculation modules, as shown in Figure 1, the creditable calculation modules include: to reset Control unit 1, trusted storage unit 2, credible metric element 3, trusted recovery unit 4, wherein as shown in Fig. 2, above-mentioned reset control Unit 1 processed is connect with the reset control circuit of computing platform 5, and control computing platform 5 enters reset state;Trusted storage unit 2 Store the backup data information that computing platform 5 starts;Credible metric element 3 is carried out to what computing platform 5 started to metric Measurement generates measurement results;When measurement results are credible, credible metric element 3 controls the credible starting of computing platform 5;Degree of working as When amount result is insincere, trusted recovery unit 4 will replace with corresponding Backup Data in trusted storage unit 2 to metric Information.
By the cooperative cooperating of each part mentioned above, creditable calculation modules provided in an embodiment of the present invention are realized to calculating Platform reset state directly controls, and realizes the measurement to computing platform start-up course, has ensured the peace of computing platform Complete credible starting, in addition, also when the measurement results of computing platform are insincere, realize computing platform to metric into Row trusted recovery improves the defence capability of entire computing platform, has ensured the clean boot of computing platform.
It is described further below in conjunction with creditable calculation modules of the specific example to the embodiment of the present invention.
Specifically, in practical applications, the cpu reset control circuit of above-mentioned reset control unit 1 and computing platform 5 connects It connects, after computing platform 5 powers on, which controls the CPU and enter reset state, i.e., so that CPU pause is opened It is dynamic.
Specifically, in practical applications, above-mentioned trusted storage unit 2, the Backup Data letter that storage computing platform 5 starts Breath, which includes that computing platform 5 starts the data such as required backup bootstrap, standby system kernel, works as meter Platform 5 is calculated to cause bootstrap by outside invading or when running system kernel transmission change or being replaced, can pass through The backup data information stored in trusted storage unit 2 restores the related data in computing platform 5, and then ensures meter Calculate 5 clean boot of platform.Trusted storage unit 2 can also be used in store computing platform 5 other kinds data information, such as using Program information etc. can also be achieved the functions such as the importing, export, deletion of data.
Specifically, in practical applications, above-mentioned credible metric element 3 to computing platform 5 start to metric into Row measurement, generates measurement results, which is the metric for treating metric and the standard of creditable calculation modules configuration It is that value is compared as a result, the content measured needed for illustrating if consistent is credible, obtained measurement results are that measurement passes through, such as The content measured needed for the inconsistent then explanation of fruit is insincere, and obtained measurement results are that measurement does not pass through.
In a preferred embodiment, it is above-mentioned to metric include: bootstrap, system kernel to be run and system and Application program etc., as shown in figure 3, above-mentioned credible metric element 3 includes:
First metric module 31 guides program measurement to bootstrap, generates first degree for calling bootstrap Measure result.Specifically, in practical applications, which can be stored in the storage chip of computing platform 5, and above-mentioned first Metric module 31 and storage chip communicate to connect, and the bootstrap are called from storage chip, and lead to the bootstrap Dynamic measurement, judges whether it is credible.
Bootstrap starting module 32, when the first measurement results are that measurement passes through, bootstrap starting module 32 is used for Cancel reseting controling signal to resetting control unit 1 and sending, the load of control computing platform 5 and Bootloader.Specifically, when When the measurement results of bootstrap are that measurement passes through, then illustrate that the bootstrap is believable bootstrap, at this point, above-mentioned draws Lead sequence starting module 32 controls the CPU of above-mentioned computing platform 5 and above-mentioned storage chip communicates to connect, above-mentioned reset control unit 1 cancels and controlling the reset of CPU, allow CPU can safety load and start the bootstrap in storage chip.
Second metric module 33 treats operating system kernel and carries out system kernel degree for calling system kernel to be run Amount generates the second measurement results.Specifically, in practical applications, being somebody's turn to do system kernel to be run can be with above-mentioned bootstrap It is stored in same storage chip, can also be stored separately according to actual needs, to improve the flexibility of computing platform 5.
System kernel runs module 34, and when the second measurement results are that measurement passes through, system kernel operation module 34 is used for Control computing platform 5 runs system kernel to be run.Specifically, when passing through wait run system kernel measurement, then explanation should be to Operating system kernel be it is safe, can operate normally, the CPU of above-mentioned computing platform 5 can be safely operated this to operating system Kernel continues start-up operation.
Third metric module 35 is used for calling system and application program, carries out system and application to system and application program Program measurement, generates third measurement results.Specifically, to bootstrap and after running system kernel and carrying out credible measurement, It also needs to carry out credible measurement to the system and application program before computing platform 5 starts, and then ensures entire start-up course institute The data information needed is all safe and reliable.
Credible starting module 36, when third measurement results are that measurement passes through, credible starting module 36 is calculated for controlling The credible starting of platform 5.Specifically, when system and application program measurement pass through, then illustrate that the entire starting of the computing platform 5 is quasi- Standby process be it is believable, can be started, to ensure the starting safety of entire computing platform 5.
In a preferred embodiment, when the measurement results of the first metric module 31 are to measure obstructed out-of-date, trusted recovery list Bootstrap is replaced with the backup bootstrap in backup data information by member 4.Specifically, when the first measurement results be can not Letter, then illustrate above-mentioned bootstrap not and be the bootstrap that above-mentioned computing platform 5 is trusted, the bootstrap be likely to be broken or It distorts, at this point, above-mentioned trusted recovery unit 4 restores the bootstrap of computing platform 5, it will be in trusted storage unit 2 The backup bootstrap prestored replaces above-mentioned incredible bootstrap, is restored to the booting operating system area of storage chip, from And ensure that computing platform 5 can normally start, it avoids bootstrap caused by outside invading etc. abnormal and can not normally start, or The problems such as causing the data information in computing platform 5 to be destroyed after abnormal starting.
First metric module 31 again measures backup bootstrap, generates the first new measurement results.In reality In, after above-mentioned insincere bootstrap is substituted with backup bootstrap, in order to ensure backup bootstrap does not have yet There is the problems such as by destroying, above-mentioned first metric module 31 needs to re-start backup bootstrap the confidence level of bootstrap Amount, and the first new measurement results are generated, and then the safety of bootstrap needed for the system starting of guarantee computing platform 5.
In a preferred embodiment, as shown in figure 4, the second above-mentioned metric module 33 includes:
System kernel acquisition submodule 331 to be run, for calling system kernel to be run.Specifically, in practical application In, after above-mentioned first metric module 31 carries out active measurement to above-mentioned bootstrap, if measurement results are bootstrap Credible, then the CPU of above-mentioned computing platform 5 starts to start, and after actuation, above-mentioned bootstrap starting module 32 passes through operation guide Measurement code in program carries out active measurement to the system kernel to be run in memory.
Time judging submodule 332, for judging the time for obtaining system kernel to be run whether in default measuring period In threshold value.Specifically, in practical applications, the invader for illegally starting above-mentioned computing platform 5 is attempted, in order to can star the meter Calculate platform 5, may by using the external Starting mode such as USB flash disk in computing platform 5, to start above-mentioned computing platform 5, and The time that system kernel acquisition submodule 331 to be run obtains system kernel to be run from above-mentioned computing platform 5 will be much smaller than The time of its system kernel to be run stored is obtained from external USB flash disk etc., therefore, in order to avoid the Starting mode such as USB flash disk are next different Often start above-mentioned computing platform 5, calls system kernel to be run to be led in above-mentioned system kernel acquisition submodule 331 to be run Before dynamic measurement, it is also necessary to which time judging submodule 332, which judges to call, is somebody's turn to do wait whether run the time required for system kernel pre- If in measuring period threshold value.
Second measurement results generate submodule 333, and when the time is in default measurement time threshold, the second measurement results are raw System kernel measurement is carried out for treating operating system kernel at submodule 333, generates the second measurement results.Specifically, when obtaining Take the time wait run system kernel in default measure in time threshold, then it is computing platform that explanation, which is somebody's turn to do system kernel to be run, 5 inside system kernel to be run can carry out credible measurement to the system kernel to be run, can continue computing platform 5 Start-up course.
In a preferred embodiment, as shown in figure 4, the second above-mentioned metric module 33 further include: signal cancels submodule 334, when the time is not in default measurement time threshold, signal revocation submodule 334 is for cancelling bootstrap starting module 32 send cancellation reseting controling signal to control unit 1 is resetted, and control computing platform 5 reenters reset state.Specifically, when Obtaining the time wait run system kernel is more than when presetting measurement time threshold, then explanation is somebody's turn to do system kernel to be run and is in exception State is insincere system kernel to be run, and without carrying out credible measurement to it, above-mentioned signal revocation submodule 334 is straight It connects revocation bootstrap starting module 32 and sends cancellation reseting controling signal to control unit 1 is resetted, and then reset control unit 1 The CPU for controlling above-mentioned computing platform 5 is in reset state, forbids its starting, to ensure the safety of computing platform 5.
In a preferred embodiment, as shown in figure 3, above-mentioned credible metric element 3 further includes fourth amount module 37, when Second measurement results are that measurement is obstructed out-of-date, and trusted recovery unit 4 is for replacing with Backup Data letter for system kernel to be run Standby system kernel in breath;Fourth amount module 37 is used to carry out system kernel measurement to standby system kernel, generates the 4th Measurement results.
Specifically, when the second measurement results be it is insincere, then illustrate that above-mentioned system kernel to be run is not 5 institute of computing platform The system kernel to be run trusted is somebody's turn to do system kernel to be run and is likely to be broken or distorts or replace, at this time trusted recovery unit 4 The standby system kernel prestored in trusted storage unit 2 is replaced into above-mentioned incredible system kernel to be run, thus on ensureing Stating computing platform 5 can normally start, and avoid system kernel to be run caused by outside invading etc. abnormal and can not normally start, Or the problems such as causing the data information in computing platform 5 to be destroyed after abnormal starting.In practical applications, to the extensive of system kernel It can be realized again by above-mentioned trusted recovery unit 4 by recovery code in above-mentioned bootstrap, the reply program is by trusted storage The standby system kernel stored in unit 2 replaces the kernel area that system kernel to be run is restored to computing platform 5.With backup System kernel be substituted it is above-mentioned insincere after running system kernel, in order to ensure standby system kernel is not also destroyed The problems such as, above-mentioned fourth amount module 37 needs to re-start standby system kernel the credible measurement of bootstrap, and raw Fourth amount as a result, guarantee that computing platform 5 starts the safety of required system kernel to be run in turn.
In a preferred embodiment, as shown in figure 3, above-mentioned credible metric element 3 further includes signal revocation module 38, when When fourth amount result is that measurement passes through, signal revocation module 38 is single to control is resetted for cancelling bootstrap starting module 32 Member 1, which is sent, cancels reseting controling signal, and control computing platform 5 reenters reset state.
In practical applications, when the measurement results of standby system kernel are that measurement passes through, then illustrate in the standby system Core is not destroyed, but in order to ensure the safety of entire computing platform 5, needs to restart computing platform 5, it is therefore desirable on The CPU that the reset control unit 1 stated controls computing platform 5 reenters reset state so that above-mentioned computing platform 5 again into Row start-up operation, the bootstrap to computing platform 5 and system kernel to be run carry out credible measurement again, to ensure whole A 5 clean boot of computing platform.
In a preferred embodiment, as shown in Fig. 2, above-mentioned creditable calculation modules further include: cryptographic algorithm unit 6, institute Cryptographic algorithm unit 6 is stated for providing a variety of cryptographic algorithms, calls various cryptographic algorithms to execute password behaviour for creditable calculation modules Make, alternatively, calling various cryptographic algorithms to execute Password Operations by the creditable calculation modules for computing platform 5.
Specifically, in practical applications, above-mentioned creditable calculation modules and computing platform 5 both can be directly from cryptographic algorithms It calls the cryptographic algorithm supported in cryptographic algorithm unit 6 to execute corresponding Password Operations in unit 6, can also be calculated by password Method unit 6 calls the cryptographic algorithm in the outer cipher algorithm platform 7 connecting with cryptographic algorithm unit, above-mentioned cryptographic algorithm unit 6 and outer cipher algorithm platform 7 in the cryptographic algorithm type that is stored can be modified or replace according to actual needs.
In a preferred embodiment, as shown in figure 3, above-mentioned credible metric element 3 further includes the first start-stop module 39, when fourth amount result is that measurement is obstructed out-of-date, the first start-stop module 39 terminates starting for controlling computing platform 5, And it generates and repairs prompting message to personnel.
Specifically, in practical applications, when the measurement results of standby system kernel are obstructed out-of-date, then illustrate the standby system Kernel is also insincere, which may be destroyed or be distorted.At this point, the peace in order to guarantee computing platform 5 Entirely, the first above-mentioned start-stop module 39 stops the start-up course of the computing platform 5, it is made to terminate to start, and generates to personnel Prompting message is repaired, and the reparation prompting message can be sent to system maintenance personnel, maintenance personnel is reminded to check as early as possible simultaneously Repair the computing platform 5.
In a preferred embodiment, as shown in figure 3, above-mentioned credible metric element 3 further includes the second start-stop module 310, when third measurement results are that measurement is obstructed out-of-date, the second start-stop module terminates starting for controlling computing platform 5, and It generates and repairs prompting message to personnel.
Specifically, in practical applications, when the measurement results of system and application program are obstructed out-of-date, then illustrate the system and Application program is insincere, may be destroyed or be distorted.At this point, the safety in order to guarantee computing platform 5, above-mentioned Two start-stop modules 310 stop the start-up course of the computing platform 5, it is made to terminate to start, and generate to repair to personnel and remind letter Breath, and the reparation prompting message can be sent to system maintenance personnel, remind maintenance personnel to check as early as possible and repair the calculating Platform 5.
By the cooperative cooperating of above-mentioned each component part, creditable calculation modules provided in an embodiment of the present invention are realized Directly to the control of the reset state of computing platform, and it is this measure step by step by way of, metrics process accelerate, and Computing platform occur external equipment invasion starting etc. start extremely when can quickly complete detection, and at once stop start, thus The defence capability for improving entire computing platform has ensured the clean boot of computing platform.In addition, in the guidance journey of computing platform Sequence or when running system kernel by destroying also achieves the replacement of the backup to bootstrap and system kernel to be run, from And computing platform is realized to the trusted recovery function of partially starting extremely, reduce the workload of maintenance personal, improves meter Calculate the defence capability of platform.
Embodiment 2
The present invention applies example and provides a kind of credible starting method of creditable calculation modules, as shown in figure 5, the creditable calculation modules Credible starting method include:
Step S1: control computing platform is in reset state.Specifically, in practical applications, before executing the step It needs to carry out power on operation to computing platform, is turned on power supply.
Step S2: calling the bootstrap of computing platform, guides program measurement to bootstrap, generates the first measurement As a result.Specifically, in practical applications, which can be stored in the storage chip of computing platform.
Step S3: when the first measurement results are that measurement passes through, cancel the control that computing platform is in reset state, control Computing platform load and Bootloader.Specifically, when the measurement results of bootstrap are that measurement passes through, then illustrate that this draws Lead sequence is believable bootstrap, the CPU of computing platform can safety load and start the bootstrap.
Step S4: calling the system kernel to be run of computing platform, treats operating system kernel and carries out system kernel measurement, Generate the second measurement results.Specifically, in practical applications, being somebody's turn to do system kernel to be run can store with above-mentioned bootstrap It in same storage chip, can also be stored separately according to actual needs, to improve the flexibility of operating system.
Step S5: when the second measurement results are that measurement passes through, computing platform runs system kernel to be run.Specifically, When wait run system kernel measurement pass through when, then illustrate the system kernel to be run be it is safe, can operate normally.
Step S6: calling the system and application program of computing platform, carries out system to system and application program and applies journey Sequence measurement, generates third measurement results.Specifically, to bootstrap and after running system kernel and carrying out credible measurement, It also needs to carry out credible measurement to the system and application program before computing platform starting, and then ensures needed for entire start-up course Data information is all safe and reliable.
Step S7: when third measurement results are that measurement passes through, the credible starting of computing platform is controlled.Specifically, work as system And application program measurement is when passing through, then illustrate the computing platform entire starting preparation process be it is believable, can be started, To ensure the starting safety of entire computing platform.
By executing above-mentioned steps S1 to step S7, the credible starting side of creditable calculation modules provided in an embodiment of the present invention Method, realizes the control of the reset state directly to the CPU of computing platform, and it is this measure step by step by way of, measurement Process is accelerated, and occurs that detection can be quickly completed when external equipment invasion starting etc. starts extremely in computing platform, exists side by side It carves and stops starting, to improve the defence capability of entire computing platform, ensured the clean boot of computing platform.
Obviously, the above embodiments are merely examples for clarifying the description, and does not limit the embodiments.It is right For those of ordinary skill in the art, can also make on the basis of the above description it is other it is various forms of variation or It changes.There is no necessity and possibility to exhaust all the enbodiments.And it is extended from this it is obvious variation or It changes still within the protection scope of the invention.

Claims (10)

1.一种可信计算模块,其特征在于,包括:复位控制单元(1)、可信存储单元(2)、可信度量单元(3)、可信恢复单元(4),其中,1. A trusted computing module, comprising: a reset control unit (1), a trusted storage unit (2), a trusted measurement unit (3), and a trusted recovery unit (4), wherein, 所述复位控制单元(1)与计算平台(5)的复位控制电路连接,控制所述计算平台(5)进入复位状态;The reset control unit (1) is connected with a reset control circuit of the computing platform (5), and controls the computing platform (5) to enter a reset state; 所述可信存储单元(2)存储所述计算平台(5)启动的备份数据信息;The trusted storage unit (2) stores backup data information started by the computing platform (5); 所述可信度量单元(3)对所述计算平台(5)启动的待度量信息进行度量,生成度量结果;The credible measurement unit (3) measures the information to be measured started by the computing platform (5), and generates a measurement result; 当所述度量结果为可信时,所述可信度量单元(3)控制所述计算平台(5)可信启动;When the measurement result is credible, the credible measurement unit (3) controls the computing platform (5) to start credibly; 当所述度量结果为不可信时,所述可信恢复单元(4)将所述待度量信息替换为所述可信存储单元(2)中对应的所述备份数据信息。When the measurement result is untrustworthy, the trusted restoration unit (4) replaces the information to be measured with the corresponding backup data information in the trusted storage unit (2). 2.根据权利要求1所述的可信计算模块,其特征在于,所述待度量信息包括:引导程序、待运行系统内核及系统及应用程序,所述可信度量单元(3)包括:2. The trusted computing module according to claim 1, wherein the information to be measured comprises: a boot program, a system kernel to be run, a system and an application program, and the trusted measurement unit (3) comprises: 第一度量模块(31),用于调用所述引导程序,对所述引导程序进行引导程序度量,生成第一度量结果;a first measurement module (31), configured to invoke the bootstrap program, perform bootstrap program measurement on the bootstrap program, and generate a first measurement result; 引导程序启动模块(32),当所述第一度量结果为度量通过时,所述引导程序启动模块(32)用于向所述复位控制单元(1)发送取消复位控制信号,控制所述计算平台(5)加载并启动所述引导程序;A bootloader startup module (32), when the first measurement result is that the measurement is passed, the bootloader startup module (32) is configured to send a cancel reset control signal to the reset control unit (1) to control the The computing platform (5) loads and starts the bootstrap program; 第二度量模块(33),用于调用所述待运行系统内核,对所述待运行系统内核进行系统内核度量,生成第二度量结果;A second measurement module (33), configured to call the system kernel to be run, perform system kernel measurement on the system kernel to be run, and generate a second measurement result; 系统内核运行模块(34),当所述第二度量结果为度量通过时,所述系统内核运行模块(34)用于控制所述计算平台(5)运行所述待运行系统内核;a system kernel operation module (34), when the second measurement result is that the measurement passes, the system kernel operation module (34) is configured to control the computing platform (5) to run the to-be-run system kernel; 第三度量模块(35),用于调用所述系统及应用程序,对所述系统及应用程序进行系统及应用程序度量,生成第三度量结果;A third measurement module (35), configured to invoke the system and the application, perform system and application measurement on the system and the application, and generate a third measurement result; 可信启动模块(36),当所述第三度量结果为度量通过时,所述可信启动模块(36)用于控制所述计算平台(5)可信启动。A trusted startup module (36), when the third measurement result is that the measurement is passed, the trusted startup module (36) is configured to control the computing platform (5) to be trusted to start up. 3.根据权利要求2所述的可信计算模块,其特征在于,3. trusted computing module according to claim 2, is characterized in that, 当所述第一度量模块的度量结果为度量不通过时,所述可信恢复单元(4)将所述引导程序替换为所述备份数据信息中的备份引导程序;When the measurement result of the first measurement module is that the measurement fails, the trusted recovery unit (4) replaces the bootstrap program with the backup bootstrap program in the backup data information; 所述第一度量模块(31)重新对所述备份引导程序进行度量,生成新的第一度量结果。The first measurement module (31) re-measures the backup bootstrap to generate a new first measurement result. 4.根据权利要求2所述的可信计算模块,其特征在于,所述第二度量模块(33)包括:4. The trusted computing module according to claim 2, wherein the second measurement module (33) comprises: 待运行系统内核获取子模块(331),用于调用所述待运行系统内核;A to-be-run system kernel acquisition submodule (331), used for calling the to-be-run system kernel; 时间判断子模块(332),用于判断获取所述待运行系统内核的时间是否在预设度量时间阈值内;a time judging submodule (332) for judging whether the time for obtaining the to-be-run system kernel is within a preset measurement time threshold; 第二度量结果生成子模块(333),当所述时间在所述预设度量时间阈值内时,所述第二度量结果生成子模块(333)用于对所述待运行系统内核进行系统内核度量,生成第二度量结果。A second measurement result generation sub-module (333), when the time is within the preset measurement time threshold, the second measurement result generation sub-module (333) is configured to perform a system kernel operation on the to-be-run system kernel measure, and generate a second measure result. 5.根据权利要求4所述的可信计算模块,其特征在于,所述第二度量模块还包括:5. The trusted computing module according to claim 4, wherein the second measurement module further comprises: 信号撤销子模块(334),当所述时间不在所述预设度量时间阈值内时,所述信号撤销子模块(334)用于撤销所述引导程序启动模块向所述复位控制单元(1)发送取消复位控制信号,控制所述计算平台(5)重新进入复位状态。a signal cancellation sub-module (334), when the time is not within the preset measurement time threshold, the signal cancellation sub-module (334) is used to cancel the bootstrap start module to the reset control unit (1) A cancel reset control signal is sent to control the computing platform (5) to re-enter the reset state. 6.根据权利要求2所述的可信计算模块,其特征在于,所述可信度量单元(3)还包括第四度量模块(37)和信号撤销模块(38),6. The trusted computing module according to claim 2, wherein the trusted measurement unit (3) further comprises a fourth measurement module (37) and a signal revocation module (38), 当所述第二度量结果为度量不通过时,所述可信恢复单元(4)用于将所述待运行系统内核替换为所述备份数据信息中的备份系统内核;When the second measurement result is that the measurement fails, the trusted recovery unit (4) is configured to replace the to-be-run system kernel with the backup system kernel in the backup data information; 所述第四度量模块(37)用于对所述备份系统内核进行系统内核度量,生成第四度量结果;The fourth measurement module (37) is configured to perform system kernel measurement on the backup system kernel to generate a fourth measurement result; 当所述第四度量结果为度量通过时,所述信号撤销模块(38)用于撤销所述引导程序启动模块向所述复位控制单元(1)发送取消复位控制信号,控制所述计算平台(5)重新进入复位状态。When the fourth measurement result is that the measurement is passed, the signal canceling module (38) is configured to cancel the bootstrap start module sending a cancel reset control signal to the reset control unit (1) to control the computing platform ( 5) Re-enter the reset state. 7.根据权利要求6所述的可信计算模块,其特征在于,还包括:密码算法单元(6),所述密码算法单元(6)用于提供多种密码算法,供所述可信计算模块调用各所述密码算法执行密码操作,或者,供所述计算平台(5)通过所述可信计算模块调用各所述密码算法执行密码操作。7. The trusted computing module according to claim 6, further comprising: a cryptographic algorithm unit (6), wherein the cryptographic algorithm unit (6) is used to provide multiple cryptographic algorithms for the trusted computing The module invokes each of the cryptographic algorithms to perform cryptographic operations, or allows the computing platform (5) to invoke each of the cryptographic algorithms to perform cryptographic operations through the trusted computing module. 8.根据权利要求6所述的可信计算模块,其特征在于,所述可信度量单元(3)还包括第一启动终止模块(39),当所述第四度量结果为度量不通过时,所述第一启动终止模块用于控制所述计算平台(5)结束启动,并生成待人员修复提醒信息。8. The trusted computing module according to claim 6, wherein the trusted measurement unit (3) further comprises a first startup and termination module (39), when the fourth measurement result is that the measurement fails , the first startup and termination module is used to control the computing platform (5) to end startup, and to generate a repair reminder message for personnel waiting. 9.根据权利要求2所述的可信计算模块,其特征在于,所述可信度量单元(3)还包括第二启动终止模块(310),当所述第三度量结果为度量不通过时,所述第二启动终止模块(310)用于控制所述计算平台(5)结束启动,并生成待人员修复提醒信息。9. The trusted computing module according to claim 2, wherein the trusted measurement unit (3) further comprises a second startup and termination module (310), when the third measurement result is that the measurement fails , the second startup and termination module (310) is configured to control the computing platform (5) to end startup, and generate a repair reminder message for waiting personnel. 10.一种可信计算模块的可信启动方法,其特征在于,包括:10. A trusted startup method for a trusted computing module, comprising: 控制计算平台处于复位状态;The control computing platform is in the reset state; 调用所述计算平台的引导程序,对所述引导程序进行引导程序度量,生成第一度量结果;Calling the bootstrap program of the computing platform, performing bootstrap program measurement on the bootstrap program, and generating a first measurement result; 当所述第一度量结果为度量通过时,取消所述计算平台处于复位状态的控制,控制所述计算平台加载并启动所述引导程序;When the first measurement result is that the measurement passes, cancel the control that the computing platform is in a reset state, and control the computing platform to load and start the boot program; 调用所述计算平台的待运行系统内核,对所述待运行系统内核进行系统内核度量,生成第二度量结果;calling the to-be-running system kernel of the computing platform, performing system-kernel measurement on the to-be-run system kernel, and generating a second measurement result; 当所述第二度量结果为度量通过时,所述计算平台运行所述待运行系统内核;When the second measurement result is that the measurement passes, the computing platform runs the to-be-run system kernel; 调用所述计算平台的系统及应用程序,对所述系统及应用程序进行系统及应用程序度量,生成第三度量结果;Invoke the system and application of the computing platform, perform system and application measurement on the system and application, and generate a third measurement result; 当所述第三度量结果为度量通过时,控制所述计算平台可信启动。When the third measurement result is that the measurement passes, the computing platform is controlled to be trusted to start.
CN201810989645.0A 2018-08-28 2018-08-28 A kind of creditable calculation modules and the credible starting method using the module Pending CN109241744A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810989645.0A CN109241744A (en) 2018-08-28 2018-08-28 A kind of creditable calculation modules and the credible starting method using the module

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810989645.0A CN109241744A (en) 2018-08-28 2018-08-28 A kind of creditable calculation modules and the credible starting method using the module

Publications (1)

Publication Number Publication Date
CN109241744A true CN109241744A (en) 2019-01-18

Family

ID=65068713

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810989645.0A Pending CN109241744A (en) 2018-08-28 2018-08-28 A kind of creditable calculation modules and the credible starting method using the module

Country Status (1)

Country Link
CN (1) CN109241744A (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112016090A (en) * 2019-05-30 2020-12-01 阿里巴巴集团控股有限公司 Secure computing card, and measurement method and system based on secure computing card
CN114327791A (en) * 2022-03-03 2022-04-12 阿里云计算有限公司 Virtualization-based trusted computing measurement method, device, equipment and storage medium

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101504704A (en) * 2009-03-17 2009-08-12 武汉大学 Star trust chain supporting embedded platform application program integrality verification method
CN101877040A (en) * 2009-12-07 2010-11-03 中国航天科工集团第二研究院七○六所 High-reliability computing platform
CN104751082A (en) * 2013-12-30 2015-07-01 研祥智能科技股份有限公司 Operating system and data security control method and operating system and data security control device
CN104778141A (en) * 2015-02-10 2015-07-15 浙江大学 Control system trusted architecture-based TPCM (Trusted Platform Control Module) and trusted detection technology
CN108153554A (en) * 2017-12-18 2018-06-12 江苏方天电力技术有限公司 A kind of RTOS trusted systems and implementation method based on credible chip
CN108280351A (en) * 2017-12-25 2018-07-13 上海电力学院 A kind of credible startup method of the electricity consumption acquisition terminal based on TPM

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101504704A (en) * 2009-03-17 2009-08-12 武汉大学 Star trust chain supporting embedded platform application program integrality verification method
CN101877040A (en) * 2009-12-07 2010-11-03 中国航天科工集团第二研究院七○六所 High-reliability computing platform
CN104751082A (en) * 2013-12-30 2015-07-01 研祥智能科技股份有限公司 Operating system and data security control method and operating system and data security control device
CN104778141A (en) * 2015-02-10 2015-07-15 浙江大学 Control system trusted architecture-based TPCM (Trusted Platform Control Module) and trusted detection technology
CN108153554A (en) * 2017-12-18 2018-06-12 江苏方天电力技术有限公司 A kind of RTOS trusted systems and implementation method based on credible chip
CN108280351A (en) * 2017-12-25 2018-07-13 上海电力学院 A kind of credible startup method of the electricity consumption acquisition terminal based on TPM

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112016090A (en) * 2019-05-30 2020-12-01 阿里巴巴集团控股有限公司 Secure computing card, and measurement method and system based on secure computing card
CN112016090B (en) * 2019-05-30 2024-01-23 阿里巴巴集团控股有限公司 Secure computing card, and measuring method and system based on secure computing card
CN114327791A (en) * 2022-03-03 2022-04-12 阿里云计算有限公司 Virtualization-based trusted computing measurement method, device, equipment and storage medium

Similar Documents

Publication Publication Date Title
CN109241745B (en) A trusted startup method and device for a computing platform
US20210266183A1 (en) Dynamic certificate management as part of a distributed authentication system
US9690498B2 (en) Protected mode for securing computing devices
CN107025406B (en) Motherboard, computer-readable storage device, and firmware verification method
CN107506663A (en) Server security based on credible BMC starts method
TWI384356B (en) Method and system for validating a computer system
CN111158767B (en) BMC-based server safe starting method and device
CN109325352A (en) A Trusted Computing Platform Architecture
TWI791975B (en) Detecting security threats by monitoring chains of configuration changes made to basic input/output system (bios) or unified extensible firmware interface (uefi) attributes
US20080163212A1 (en) Paralleled management mode integrity checks
CN105550579A (en) Method for realizing BMC integrity measurement based on TPCM
CN101295340A (en) A trusted platform module and its active measurement method
CN104200165A (en) Initiative trusted measurement method based on CPU made in China
CN105205401A (en) Trusted computer system based on safe password chip and trusted guiding method thereof
CN109241744A (en) A kind of creditable calculation modules and the credible starting method using the module
CN111125707A (en) BMC (baseboard management controller) safe starting method, system and equipment based on trusted password module
US20200159543A1 (en) Information Handling Systems And Methods To Selectively Control Ownership Of A Hardware Based Watchdog Timer (WDT)
TWI604336B (en) Runtime verification using external device
CN109684126B (en) Memory verification method for ARM equipment and ARM equipment for executing memory verification
TWI805472B (en) System-on-chip, a method for the same, and a computing device
US20240119155A1 (en) Generating alerts for unexpected kernel modules
CN112269996A (en) Dynamic measurement method of block chain main node-oriented active immune trusted computing platform
CN115618360A (en) Server tamper-proof safe starting method and device
Intel
CN115906046A (en) Trusted Computing System and Measurement Method Based on Trusted Computing System

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
CB03 Change of inventor or designer information
CB03 Change of inventor or designer information

Inventor after: Gao Kunlun

Inventor after: Zhao Baohua

Inventor after: Wang Shucai

Inventor after: Wang Zhihao

Inventor before: Zhao Baohua

Inventor before: Gao Kunlun

Inventor before: Wang Shucai

Inventor before: Wang Zhihao

RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20190118