Centralized and Unified Trusted Computing Platform Management Model and Its Application

doi:10.3969/j.issn.1671-1122.2017.04.002

Abstract

Abstract:

Trusted computing technology extend the capacity of IT security management. The traditional security management models or trust management models are not fit for trusted computing platforms. A centralized and unified trusted computing platform management model called CUTM based on the integrity verifying ability of trusted computing technology is proposed to meet the security requirements of high security level information systems. It has the advantages of separated management roles and unified integrity policy. So it can support various kinds of trusted computing hardware devices and platforms. Its essential contents and relationships with other legacy security management systems are analyzed in this thesis. At last, this model is compared with TCG-defined management model.

Key words: IT security management, trusted computing, management model

CLC Number:

TP391

Qiang HUANG, Gaojian WANG, Wenzhi MI, Lunwei WANG. Centralized and Unified Trusted Computing Platform Management Model and Its Application[J]. Netinfo Security, 2017, 17(4): 9-14.

Figures/Tables 6

References 16

[1]	张焕国, 李晶, 潘丹铃, 等. 嵌入式系统可信平台模块研究[J].计算机研究与发展, 2011(7):1269-1278.
[2]	刘传波, 王催. 舰载指控系统可信计算构建技术研究[J].计算机与数字工程, 2014(12):2439-2442.
[3]	刘巍然,刘建伟. Android操作系统可信计算平台架构[J]. 武汉大学学报(理学版), 2013, 59(2):159-164.
[4]	沈昌祥,张焕国,王怀民,等. 可信计算的研究与发展[J].中国科学:信息科学, 2010(2):139-166.
[5]	ZHANG H G, HAN W B, LAI X J, et al.Survey on Cyberspace Security[J]. Science China Information Sciences, 2015, 58(11):1-43.
[6]	王冠. TPCM及可信平台主析标准[J].中国信息安全, 2015(2):66-68.
[7]	Trusted Computing Group.TCG Specification Architecture Overview[EB/OL]. , 2007-8-8.
[8]	ZHENG Y.Trust Management in Mobile Environments: Autonomic and Usable Models[M]. Hershey: Register, 2014.
[9]	NOOR T H,SHENG Q Z,BOUGUETTAYA A.Trust Management in Cloud Services[M]. Berlin: Springer, 2014.
[10]	BLAZE M, FEIGENBAUM J, IOANNIDIS J, et al. The Role of Trust Management in Distributed Systems Security[EB/OL]. ,2016-12-10.
[11]	黄强,常乐,张德华,等. 基于可信计算基的主机可信安全体系结构研究[J].信息网络安全,2016(7):78-84.
[12]	李超, 王红胜, 陈军广, 等. 加强计算机终端信息安全的两种解决方案[J].计算机技术与发展, 2009, 19(1):165-167.
[13]	聂晓伟, 冯登国. 基于可信计算平台的一种访问控制策略框架——TXACML[J].计算机研究与发展, 2008, 45(10):1676-1686.
[14]	谭良, 周明天. 基于可信计算平台的静态客体可信验证系统的设计与实现[J].计算机科学, 2008, 35(2):253-255.
[15]	李勇. 基于可信计算的应用环境安全研究[D]. 郑州:解放军信息工程大学, 2011.
[16]	王冠,袁华浩. 基于可信根服务器的虚拟TCM密钥管理功能研究[J].信息网络安全,2016(4):17-22.