ISSN 1000-1239 CN 11-1777/TP

• 论文 • 上一篇    下一篇

可信平台模块自动化测试研究

詹 静1,2 张焕国1,2,3   

  1. 1(武汉大学计算机学院 武汉 430072) 2(武汉大学空天信息安全与可信计算教育部重点实验室 武汉 430072) 3(武汉大学软件工程国家重点实验室 武汉 430072) (jingzhan_whu@yahoo.com.cn)
  • 出版日期: 2009-11-15

Automated Testing of the Trusted Platform Module

Zhan Jing1,2 and Zhang Huanguo1,2,3   

  1. 1(School of Computer Science, Wuhan University, Wuhan 430072) 2(Key Laboratory of Aerospace Information Security and Trusted Computing of Ministry of Education, Wuhan University, Wuhan 430072) 3(State Key Laboratory of Software Engineering, Wuhan University, Wuhan 430072)
  • Online: 2009-11-15

摘要: 可信平台模块(trusted platform module,TPM)是信息安全领域新发展趋势可信计算的关键部件,对其进行规范符合性测试非常有必要.由于传统测试方法与经验无法满足精确、易被机器处理的测试要求,状态机理论可为符合性测试的正确性提供理论基础,但易于产生状态爆炸问题.因此,基于TPM规范进行了一致性测试建模,提出相应策略提高测试效率,建立了TPM自动化测试工具.该工具能基于数据库自动生成测试用例,根据状态图进行一致性测试或自定义测试,达到过程可视化的效果.针对待测试产品得出了较为全面一致性结论和基本安全分析,为今后的可信产品安全性测试打下基础.

关键词: 可信计算, 可信平台模块, 自动化测试工具, 一致性测试, 状态机建模

Abstract: Trusted computing is a new paradigm to improve client security on today’s general architecture platforms and it uses a hardware chip as a key component, called trusted platform module (TPM) to achieve the goal. As there are already many related products on the market, it is very necessary to have conformance testing. However, traditional testing methods and experiences can’t meet the testing requirements in a form that make product evaluation to be precisely and automatically processed by machines. A conformance testing model based on the state machine theory is proposed as a solid foundation for testing correctness. Furthermore, related testing strategies based on specification are proposed in order to deal with the state space explosion problem which is a major obstacle reducing practicality of the state machine theory based testing methods. Automated testing tool is also designed and implemented correspondingly to improve the efficiency and accuracy. The tool can generate test suits automatically based on database and customize testing sequences based on the state graph according to user’s requirements. It can achieve process visualization and testing results for the conformance testing that can be used by future security evaluation on trusted computing platform products.

Key words: trusted computing, trusted platform module (TPM), automated testing tool, conformance testing, state machine model