CHEN Wen-zhi,HUANG Wei,XIE Cheng,HE Qin-ming

DOI: https://doi.org/10.3785/j.issn.1008-973x.2009.02.016

2009-01-01

Abstract:Virtualization was introduced to increase the security of embedded devices while avoiding the shortcomings caused by the hardware-based approach such as poor flexibility,high complexity and high production cost of equipments.Virtualization platform SmartVP offers a secure system environment by the software-based approach.SmartVP partitions the computing resources on the ARM processor into two parallel sets,one for standard real-time operating system T-Kernel and the other for general-purpose operating system Linux.The trusted computing base of SmartVP is constructed by protecting the code and data of the software on T-Kernel,as well as by implementing the fundamental security services and interfaces.Both performance benchmark and applications show that SmartVP improves the security of embedded devices and reduces the implementing risk together with developing time and cost.

Tianqi XU,Shufen LIU,Lu HAN

DOI: https://doi.org/10.13413/j.cnki.jdxblxb.2014.03.23

2014-01-01

Abstract:To improve virtualization security issues in cloud computing selurity proposed a trusted virtualization architecture. The architecture constructs a credible framework from the bottom infrastructure to the upper application services by adding virtual trusted platform module in analog processor and the trusted platform module driver in the operating system.This architecture combines the trusted platform module in the virtualization platform servers,which can effectively solve the security problem in server virtualization platform.

Cui Yan-Li,Zhang Xing

DOI: https://doi.org/10.1109/cnmt.2009.5374540

2009-01-01

Abstract:In the distributed environment, one important security issue is how to apply further security control to the object that is released to other terminals. The appearance of trusted computing technology has provided an effective solution for this issue in the distributed environment. At the same time, through combining trusted computing technology with the strong isolation and sharing characteristic provided by virtual machine technology has further increased the security and the flexibility of distributed access control. Therefore, this paper uses trusted computing technology to improve the security of the terminal in carrying out the distributed access control, designs a trusted terminal architecture that bases on the trusted computing technology and the virtual machine technology as well as a enhanced mode that suits in distributed access control, and on this basis, analyzes the security of system design.

ZHANG Lei,CHEN Xing-shu,LIU Liang,LI Hui

DOI: https://doi.org/10.3969/j.issn.1001-0548.2015.01.020

2015-01-01

Abstract:For the kernel integrity threats of virtual machine in cloud computing environment, an integrity protecting technology of virtual machine kernel, cloud trusted virtual machine(CTVM ), is proposed. In the CTVM, the virtual trusted execution environment in kernel-based virtual machine(KVM) is created, the multiple virtual machines are endowed with a trusted computing function at the same time, and the guest virtual machines are provided with integrity measurement ability. By utilizing hardware virtualization technology, the untrusted kernel modules are isolated from operating system kernel through constructing isolated address space in guest virtual machines, so as to protect the booting integrity and runtime integrity of guest virtual machines. Finally, with a domestic server as the experimental platform, CTVM prototype system is presented. System test and analysis show that the system performance loss is within the acceptable range.

Zhang Shibin,Xu Chunxiang,Long Yaxing

DOI: https://doi.org/10.1109/itap.2011.6006215

2011-01-01

Abstract:In this paper, taking the trusted computing as the background, the terminal trusted model based on Xen VMM is studied and proposed. On the basis of this model, a one layer measurement trust model with recovery processing is analyzed and researched, and we specifically study and discuss the mode of trusted measurement and the trusted measurement of each part in the Linux boot process. In order to further verify the feasibility and reasonableness of terminal trusted model based on trusted computing, we use TPM Emulator to build TPM simulation experiment platform. Finally, the feasibility and reasonableness of this model is further confirmed by the aid of simulation application. At the same time, this model proposed in this paper has certain practical value.

LIU Qian,LUO Yuan,WENG Chu-liang,LI Ming-lu

DOI: https://doi.org/10.3969/j.issn.1674-9456.2010.06.012

2010-01-01

Abstract:Access control is the widely used way to guarantee the security of communication between virtual machines(VMs).But it is limited in flexibility and scalability.To overcome this limitation,this paper proposes a suite of security protocols for virtual machine systems.These security protocols establish a trusted path from bottom hardware to applications in VMs,by utilizing trusted platform module(TPM) as the trusted root.As a result,security functions,including granting key and certificate,identity authentication,secure communication between VMs,key and certificate update,are fulfilled successfully.Besides,these security protocols are implemented in Xen.

Xin Jin,Qixu Wang,Xiang Li,Xingshu Chen,Wei Wang

DOI: https://doi.org/10.26599/tst.2018.9010129

2019-01-01

Tsinghua Science & Technology

Abstract:As a foundation component of cloud computing platforms, Virtual Machines (VMs) are confronted with numerous security threats. However, existing solutions tend to focus on solving threats in a specific state of the VM. In this paper, we propose a novel VM lifecycle security protection framework based on trusted computing to solve the security threats to VMs throughout their entire lifecycle. Specifically, a concept of the VM lifecycle is presented divided up by the different active conditions of the VM. Then, a trusted computing based security protection framework is developed, which can extend the trusted relationship from trusted platform module to the VM and protect the security and reliability of the VM throughout its lifecycle. The theoretical analysis shows that our proposed framework can provide comprehensive safety to VM in all of its states. Furthermore, experiment results demonstrate that the proposed framework is feasible and achieves a higher level of security compared with some state-of-the-art schemes.

Shuang Zhang,Xinyu Wan,Deqi Kong,Yangming Guo

DOI: https://doi.org/10.1109/dsa51864.2020.00043

2020-01-01

Abstract:With the application of virtualization and multi-core processor in embedded system, the computing capacity of embedded system has been improved comprehensively, but it is also faced with malicious attacks against virtualization technology. First, it was analyzed the security requirements of each layer of embedded virtualization computing platform. Aiming at the security requirements, it was proposed the security architecture of embedded virtualization computing platform based on trusted computing module. It was designed the hardware trusted root on the hardware layer, the virtualization trusted root on the virtual machine manager layer, trusted computing component and security function component on guest operation system layer. Based on the trusted roots, it was built the static extension of the trusted chain on the platform. This security architecture can improve the active security protection capability of embedded virtualization computing platform.

Yuzhong Sun,Haifeng Fang,Ying Song,Lei Du,Kai Zhang,Hongyong Zang,Yaqiong Li,Yajun Yang,Ran Ao,Yongbing Huang,Yunwei Gao

DOI: https://doi.org/10.1007/s11704-009-0076-5

2010-01-01

Frontiers of Computer Science in China

Abstract:Currently, with the evolution of virtualization technology, cloud computing mode has become more and more popular. However, people still concern the issues of the runtime integrity and data security of cloud computing platform, as well as the service efficiency on such computing platform. At the same time, according to our knowledge, the design theory of the trusted virtual computing environment and its core system software for such network-based computing platform is at the exploratory stage. In this paper, we believe that efficiency and isolation are the two key proprieties of the trusted virtual computing environment. To guarantee these two proprieties, based on the design principle of splitting, customizing, reconstructing, and isolation-based enhancing to the platform, we introduce TRainbow, a novel trusted virtual computing platform developing by our research group.With the two creative mechanisms, that is, capacity flowing amongst VMs and VM-based kernel reconstructing, TRainbow provides great improvements (up to 42%) in service performance and isolated reliable computing environment for Internet-oriented, large-scale, concurrent services.

Xu-dong HAO,Chun-xiang XU

DOI: https://doi.org/10.3969/j.issn.1009-2552.2009.09.017

2009-01-01

Abstract:As a hot topic of computing world at present,the virtualization technology can make convince to manage the computing resources and be used to cloud computing.With the growing of these technology,some security problems come out,many malicious programs are booted on the launching time of the virtualization systems,then the trusted execution technology becomes more important.This paper introduces the features and mechanism of the trusted execution technology,and analyses the central component of this technology,finally gives a conclusion for the research status and exist problems.

Wenzhi Chen,Zhipeng Zhang,Jianhua Yang,Qinming He

DOI: https://doi.org/10.1007/s11859-010-0301-y

2010-01-01

Wuhan University Journal of Natural Sciences

Abstract:This paper presents vCerberus, a novel hypervisor to provide trusted and isolated code execution within virtual domains. vCerberus is considerably tiny, while allowing secure sensitive codes to be executed in an isolated circumstance from the virtual domain, and can be attested by a remote party in an efficient way. These properties will be guaranteed even if the guest operating system is malicious. This protects the secure sensitive codes against the malicious codes in the Guest OS, e.g., the kernel rootkits. We present an approach to dynamically measure and isolate the launch environment on the virtual machines based on the para-virtualization technology and a novel virtualization of trusted platform module (TPM). Our performance experiment result shows that the overhead introduced by vCerberus is minimized; the performance of the launch environment in vCerberus is as competitive as the guest OS running on mainstream hypervisors.

YANG Xia,LEI Lin,WU Xin-yong,WU Kai-jun,SANG Nan

DOI: https://doi.org/10.3969/j.issn.1001-0548.2016.02.023

2016-01-01

Abstract:Device booting is a critical step and the foundation of trust for embedded systems. Through analyzing related work we find that most current trusted boot technologies rely heavily on the hardware modules such as trusted platform module (TPM). A new trusted boot method is proposed in this paper for embedded Linux system, which is based on the trusted measurement policy and trust chain mechanism. Firstly, this approach takes the firmware IROM as root of trust, which is used to check the integrity and authenticity of the next booting step like BootLoader. Then the BootLoader do the same to the Kernel. So the chain of trust is established from the top of booting to the Kernel. Using the technology of digital signature and Hash algorithm, we implemented the integrity and authenticity checking for each booting entity. The results show that this method can verify the integrity and authenticity of booting entity, and protect the expected metric easily and effectively without other hardware modules. Besides, it ensures the integrity and authenticity of booting entity when they are updated.

Jingkai Mao,Haoran Zhu,Junchao Fan,Lin Li,Xiaolin Chang

2024-05-02

Abstract:The Virtual Machine (VM)-based Trusted-Execution-Environment (TEE) technology, like AMD Secure-Encrypted-Virtualization (SEV), enables the establishment of Confidential VMs (CVMs) to protect data privacy. But CVM lacks ways to provide the trust proof of its running state, degrading the user confidence of using CVM. The technology of virtual Trusted Platform Module (vTPM) can be used to generate trust proof for CVM. However, the existing vTPM-based approaches have the weaknesses like lack of a well-defined root-of-trust, lack of vTPM protection, and lack of vTPM's trust proof. These weaknesses prevent the generation of the trust proof of the CVM. This paper proposes an approach to generate the trust proof for AMD SEV-based CVM so as to ensure its security by using a secure vTPM to construct Trusted Complete Chain for the CVM (T3CVM). T3CVM consists of three components: 1) TR-Manager, as the well-defined root-of-trust, helps to build complete trust chains for CVMs; 2) CN-TPMCVM, a special CVM provides secure vTPMs; 3) CN-CDriver, an enhanced TPM driver. Our approach overcomes the weaknesses of existing approaches and enables trusted computing-based applications to run seamlessly in the trusted CVM. We perform a formal security analysis of T3CVM, and implement a prototype system to evaluate its performance.

Cryptography and Security,Software Engineering

曲文涛,李明禄,翁楚良

DOI: https://doi.org/10.3778/j.issn.1673-9418.2010.02.008

2010-01-01

Abstract:Together with the development of network computing and cloud computing,the virtualization technology grows up quickly.In the computer's world,the security problem is an important problem.Through the virtualization technology,some new methods are proposed to solve traditional security problem.This paper is going to illustrate a trusted scan cross virtual machine.This method can protect the scan program from the malicious software's attacking.

Tao Li,Aiqun Hu

DOI: https://doi.org/10.1109/chinacom.2012.6417482

2012-01-01

Abstract:Based on the theory of Trusted Computing Group (TCG), trust is extended from Trusted Computing Base (TCB) to Operating System (OS) and applications. But the efficient trust chain is required during boot and whole system running time. This paper describes a transitive trust model for mobile terminal. We propose a static trust chain by locating boot-code and OS image into TCB, which is more safety, reliability and efficiency than the trust structure of TCG. After boot, resources are protected by Trusted Agents (TA). Based on this mechanism, dynamic trust chain is proposed. Only the processes granted trust property by TA could access specific resources. The authors have also developed a prototype of trusted mobile terminal system. System booting time is shortened by 5.2s. The experiment results of files and network accessing indicate that the proposed model may cause system performance decrease between 0.1% and 16%. The presented model can be applied to build a high efficiency trusted mobile terminal.

Xin Wan,Zhiting Xiao,Yi Ren

DOI: https://doi.org/10.1109/MINES.2012.82

2012-01-01

Abstract:A key technology of cloud computing is virtualization, which can lead to reduce the total cost and increase the application flexibility. However along with these benefits come added security challenges. The extension of Trusted Computing to virtual environments can provide secure storage and ensure system integrity. In this paper, we describe and analyze several existing virtualization of TPM (vTPM) designs: software-based vTPM, hardware-based vTPM, para-virtualized TPM and property-based vTPM and analyze each of their limitations. We believe this to be an useful exercise to help better understand and apply the technology of virtualization of TPM in real cloud computing systems.

Fang Yanxiang,Shen Changxiang,Xu Jingdong,Wu Gongyi

DOI: https://doi.org/10.1007/bf02831789

2006-01-01

Abstract:This paper fist gives an investigation on trusted computing on mainstream operation system (OS). Based on the observations, it is pointed out that Trusted Computing cannot be achieved due to the lack of separation mechanism of the components in mainstream OS. In order to provide a kind of separation mechanism, this paper proposes a separated domain-based kernel model (SDBKM), and this model is verified by non-interference theory. By monitoring and simplifying the trust dependence between domains, this model can solve problems in trust measurement such as deny of service (DoS) attack, Host security, and reduce the overhead of measurement.

Tao Li,Aiqun Hu

DOI: https://doi.org/10.1002/sec.808

IF: 1.968

2013-01-01

Security and Communication Networks

Abstract:Trust chain, which focuses on the security in trusted computing platform, is the key technology to ensure system security. Aiming to establish the trust chain for mobile terminals, this paper proposes a trusted turing machine to formally describe the trust transitive process and construct an efficient trust chain model during the system boot time and the run time. The model consists of the following two characteristics. First, the boot code and operating system image are stored in Root of Trusted Storage. This structure provides more safety, reliability, and efficiency than that proposed by Trusted Computing Group. Second, a resource-oriented protecting scheme is designed during the system run time. A process can access specific resources on the condition that it has been granted trust property by the related verifying program. In addition, we also develop a prototype of trusted mobile terminal systems. Results show that the system boot time is shortened by 5.2s. In the meantime, the dynamic trusted mechanism executed during system run time can efficiently protect platform from malicious attack while it has little impact to system performance. The proposed model has the trust transitive property of the trust chain and can be applied to build a high efficiency trusted mobile terminal. Copyright © 2013 John Wiley & Sons, Ltd.

Lei ZHANG,Xing-shu CHEN,Yi REN,Hui LI

DOI: https://doi.org/10.3969/j.issn.1671-1122.2015.04.010

2015-01-01

Abstract:Kernel-level Rootkits of virtual machine in cloud can destroy the integrity of virtual machine of tenant. This paper presents a kind of kernel-level Rootkit detection technology based on Virtual Machine Monitor (VMM). This technology establishes True Module List (TML) by critical path breakpoint and obtains the virtual machine''s kernel module view, the user mode view was established by bottom-up calls from VMM, and the reconstructed kernel mode view of virtual machine was get in the VMM layer, then by cross-referencing these three views to detect Rootkit hidden in a virtual machine. Finally, a prototype system was realized based on the Kernel-based Virtual Machine (KVM), experimental results showed that Rootkits in Virtual Machine could be quickly and ac-curately detected in the prototype system, details of Rootkit could be reported according to TML, the overall per-formance loss of the prototype system was in acceptable range.

WANG Wei,CHEN Xingshu,LAN Xiao,JIN Xin

DOI: https://doi.org/10.11959/j.issn.2096-109x.2018098

2018-01-01

Abstract:The virtual machine attestation scheme proposed by trusted computing group (TCG) can provide attestation service of virtual machine for cloud computing.However,the service using the scheme proposed by the TCG directly would be threatened by the cuckoo attack and its performance would be lower.Therefore,a new virtual machine remote attestation scheme based on virtual machine introspection (VMI) was proposed.Firstly,it eliminated the path to perform cuckoo attacks in virtual machines via obtaining virtual machines′ remote attestation evidence in virtual machine monitor (VMM).Secondly,it used physical trusted platform module (TPM) to ensure the integrity of virtual machines’ remote attestation evidence and reduced the number of attestation identity key (AIK) certificates required during remote attestation to balance the load of private CA.Experiments show that the proposed scheme can verify the status of virtual machines correctly and increase the performance of bulk virtual machines’ remote attestation significantly.