Trusted execution environment design method and system based on virtual machine manager

Trusted execution environment design method and system based on virtual machine manager

The invention discloses a trusted execution environment design method and system based on a virtual machine manager, and the method comprises the steps: carrying out the design based on an address space and a kernel function of privileged software, and obtaining a trusted execution environment isola...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: LI TONG, REN SHUAI, YANG CHAO, XU CHANGBIN, XIAO JUNHUA, LI JUN, GENG HONGBI, LIU YANG, HUANG WENSI, CHEN DEFENG, LIU RUITONG, SUN FENG, ZHANG LONGBING, CHEN JIAN, YANG SHUJUN, YANG ZHIBIN
Format: Patent
Sprache:chi ; eng
Schlagworte:
CALCULATING
COMPUTING
COUNTING
ELECTRIC DIGITAL DATA PROCESSING
PHYSICS
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The invention discloses a trusted execution environment design method and system based on a virtual machine manager, and the method comprises the steps: carrying out the design based on an address space and a kernel function of privileged software, and obtaining a trusted execution environment isolated from the outside; verifying the integrity of the loaded software in the process from electrifying the machine to running the operating system based on the trusted boot chain; according to the invention, a virtual machine level trusted execution environment which does not depend on hardware and can cross platforms is realized based on software of formalized verification; the problems that according to an existing scheme, the root of trust is completely controlled by a CPU manufacturer, software development complexity of the trusted execution environment application is high, CPU hardware design is complex, additional performance overhead is brought, and the trusted execution environment application is difficult t