Computer Engineering and Applications ›› 2018, Vol. 54 ›› Issue (13): 105-110.DOI: 10.3778/j.issn.1002-8331.1703-0021

Previous Articles     Next Articles

Design of embedded trusted computing platform based on TPM

WANG Yong1,2, SHANG Wenli2, ZHAO Jianming2, WAN Ming2, YUAN Weiwei1   

  1. 1.School of Automation and Electrical Engineering, Shenyang Ligong University, Shenyang 110159, China
    2.Key Laboratory of Chinese Academy of Sciences Network Control System, Shenyang Institute of Automation, Chinese Academy of Sciences, Shenyang 110016, China
  • Online:2018-07-01 Published:2018-07-17


王  勇1,2,尚文利2,赵剑明2,万  明2,苑薇薇1   

  1. 1.沈阳理工大学 自动化与电气工程学院,沈阳 110159
    2.中国科学院 沈阳自动化研究所 中科院网络化控制系统重点实验室,沈阳 110016

Abstract: Enhancing the security of industrial embedded system is the core issue in the field of industrial information security. Only rely on the software security mechanism has been unable to fully protect the security of information, and the existing trusted platform module is designed for personal computer, can not meet the special needs of industrial embedded systems. Through the research of trusted computing technology, this paper designs an embedded trusted computing platform based on trusted platform module TPM, and from the software structure and hardware structure, the transmission mechanism of trusted platform module and trust chain is analyzed. Finally, the trusted verification is performed on the ZYNQ hardware platform, through the kernel forgery attack test, verify the correctness of the design, so as to ensure the security and reliability of industrial embedded platform.

Key words: trusted computing, Trust Platform Module(TPM), chain of trust, ZYNQ hardware platform, embedded platform

摘要: 增强工业嵌入式系统的安全性是当今工业信息安全领域研究的核心议题。只依靠软件的安全机制已经不能充分地保护信息安全,而现有的可信平台模块是专为个人计算机设计的,不能满足工业嵌入式系统的特殊需求。通过研究可信计算技术,设计了基于可信平台模块TPM的嵌入式可信计算平台,并从软件结构和硬件结构,分析了可信平台模块和信任链的传递机制。最后,在ZYNQ硬件平台上进行可信验证,通过内核伪造攻击测试,验证了设计的正确性,从而确保了工业嵌入式平台的安全可信。

关键词: 可信计算, 可信平台模块(TPM), 信任链, ZYNQ硬件平台, 嵌入式平台