• 中国精品科技期刊
  • CCF推荐A类中文期刊
  • 计算领域高质量科技期刊T1类
高级检索

一种嵌入式Linux系统上的新型完整性度量架构

贾巧雯, 马昊玉, 厉严, 王哲宇, 石文昌

贾巧雯, 马昊玉, 厉严, 王哲宇, 石文昌. 一种嵌入式Linux系统上的新型完整性度量架构[J]. 计算机研究与发展, 2022, 59(10): 2362-2375. DOI: 10.7544/issn1000-1239.20220525
引用本文: 贾巧雯, 马昊玉, 厉严, 王哲宇, 石文昌. 一种嵌入式Linux系统上的新型完整性度量架构[J]. 计算机研究与发展, 2022, 59(10): 2362-2375. DOI: 10.7544/issn1000-1239.20220525
shu
Jia Qiaowen, Ma Haoyu, Li Yan, Wang Zheyu, Shi Wenchang. A Novel Integrity Measurement Architecture for Embedded Linux Systems[J]. Journal of Computer Research and Development, 2022, 59(10): 2362-2375. DOI: 10.7544/issn1000-1239.20220525
Citation: Jia Qiaowen, Ma Haoyu, Li Yan, Wang Zheyu, Shi Wenchang. A Novel Integrity Measurement Architecture for Embedded Linux Systems[J]. Journal of Computer Research and Development, 2022, 59(10): 2362-2375. DOI: 10.7544/issn1000-1239.20220525
shu
贾巧雯, 马昊玉, 厉严, 王哲宇, 石文昌. 一种嵌入式Linux系统上的新型完整性度量架构[J]. 计算机研究与发展, 2022, 59(10): 2362-2375. CSTR: 32373.14.issn1000-1239.20220525
引用本文: 贾巧雯, 马昊玉, 厉严, 王哲宇, 石文昌. 一种嵌入式Linux系统上的新型完整性度量架构[J]. 计算机研究与发展, 2022, 59(10): 2362-2375. CSTR: 32373.14.issn1000-1239.20220525
shu
Jia Qiaowen, Ma Haoyu, Li Yan, Wang Zheyu, Shi Wenchang. A Novel Integrity Measurement Architecture for Embedded Linux Systems[J]. Journal of Computer Research and Development, 2022, 59(10): 2362-2375. CSTR: 32373.14.issn1000-1239.20220525
Citation: Jia Qiaowen, Ma Haoyu, Li Yan, Wang Zheyu, Shi Wenchang. A Novel Integrity Measurement Architecture for Embedded Linux Systems[J]. Journal of Computer Research and Development, 2022, 59(10): 2362-2375. CSTR: 32373.14.issn1000-1239.20220525
shu

一种嵌入式Linux系统上的新型完整性度量架构

  • 1(中国科学院软件研究所 北京 100190)

  • 2(中国科学院大学 北京 100049)

  • 3(西安电子科技大学网络与信息安全学院 西安 710126)

  • 4(中国人民大学信息学院 北京 100872) (jiaqw@ios.ac.cn)

基金项目: 国家自然科学基金项目(61972215,61972073,62172238);国家重点研发计划项目(2018YFA0704703)
详细信息

  • 中图分类号: TP309.1

A Novel Integrity Measurement Architecture for Embedded Linux Systems

  • 1(Institute of Software, Chinese Academy of Sciences, Beijing 100190)

  • 2(University of Chinese Academy of Sciences, Beijing 100049)

  • 3(School of Cyber Engineering, XidianUniversity, Xi’an 710126)

  • 4(School of Information, Renmin University of China, Beijing 100872)

Funds: This work was supported by the National Natural Science Foundation of China (61972215, 61972073, 62172238) and the National Key Research and Development Program of China(2018YFA0704703).

HTML全文

    摘要
  • 摘要: 完整性度量框架是可信计算平台的重要组成部分之一.但过往研究工作所提出的完整性度量框架设计在实际应用于嵌入式设备场景时,往往体现出不同程度的局限性.提出了内核级动态完整性度量架构(dynamic integrity measurement architecture at kernel-level, DIMAK),一种针对嵌入式Linux操作系统的实用化完整性度量架构,为基于Linux的嵌入式设备提供有效且高性能的运行时完整性验证能力.该架构支持对映射至系统内核空间及用户进程的可执行文本、静态数据以及动态链接信息等关键内容实施即时(just-in-time)完整性校验.利用Linux内核的进程、内存和页面管理机制,DIMAK实现了对被度量内容所驻留物理页面的运行时校验,避免了基于文件的静态度量方法可能存在的检查与使用时差(time-of-check to time-of-use, TOCTTOU)漏洞.通过首次引入对位置无关代码的重定位/动态链接信息的完整性基线预测方法,DIMAK在面对包括基于hooking的控制流劫持、恶意代码运行时载入等攻击威胁时具有较之现存同类技术更强的完备性.另外,通过引入对软件热补丁功能的可信验证支持,DIMAK在系统完整性度量问题中将该应用场景与恶意攻击行为正确地加以区分.根据各种被度量实体的不同类型,DIMAK在离线阶段、系统启动时、进程加载时和代码动态加载时等时机分别生成其对应的完整性基线,确保其完整性验证行为的正确性.真机测试显示,所述的DIMAK架构产生的性能开销完全可以满足嵌入式设备场景下的实际应用要求.
    Abstract: Integrity measurement architecture (IMA) is an important component of trusted computing. However, existing IMA schemes possess a number of practical limitations when applied in embedded systems. In this paper, we propose dynamic integrity measurement architecture at kernel-level (DIMAK), an effective and efficient runtime integrity measurement architecture for embedded Linux systems. DIMAK supports just-in-time integrity measurement for code texts and static data in both kernel and user space, as well as dynamic linking information maintained by position independent executables (PIE). Exploiting the process, memory and page management mechanism of Linux kernel, DIMAK is capable of measuring the to-be-measured contents at physical-page-level, hence avoids potential time-of-check to time-of-use (TOCTTOU) vulnerability that has been discovered in existing techniques. On top of that, by proposing a predictive integrity baseline generation technique for the relocation and dynamic linking information of ELF files, the proposed architecture achieves better completeness than the state-of-the-art schemes in case of responding to threats like hooking-based control flow hijacking and dynamically loaded malware. Also, with a novel trusted software hot-fix protocol, the proposed architecture becomes the first IMA scheme capable of correctly distinguishing on-the-fly software patching behaviors from malicious code loading. Given different types of contents to be measured, DIMAK generates the corresponding integrity baselines at a variety of timings, e.g., during off-line phase, system booting, process loading or dynamic code loading, thus ensures correctness of the architecture’s integrity measurement for all possible scenarios. Experiments on real commercial embedded devices have also shown that performance overhead caused by DIMAK is sufficiently acceptable for embedded devices.
    • HTML全文
    • 参考文献(0)
    • 相关文章
    • 施引文献(8)

  • 期刊类型引用(3)

    1. 杨雄,徐慧华. 云计算环境下基于全同态加密的神经网络分类预测研究. 贵州大学学报(自然科学版). 2024(01): 89-93+109 . 百度学术
    2. 王斌,王业. 改进拉普拉斯的网络数据链网关终端访问认证. 计算机仿真. 2023(08): 408-412 . 百度学术
    3. 孙敏,陕童,续森炜. 基于I-SM4和SM2的混合加密算法. 计算机科学. 2023(S2): 869-872 . 百度学术

    其他类型引用(5)

    • 资源附件(0)
计量
  • 文章访问数:  244
  • HTML全文浏览量:  6
  • PDF下载量:  163
  • 被引次数: 8
出版历程
  • 发布日期:  2022-09-30

目录

摘要
HTML全文
    参考文献(0)
    相关文章
    施引文献(8)
    资源附件(0)

    /

    返回文章
    返回
    邮件订阅 RSS
    微信订阅号<br/>(实时资讯)

    微信订阅号
    (实时资讯)

    微信服务号<br/>(同步网站)

    微信服务号
    (同步网站)

    微信视频号<br/>(视频分享)

    微信视频号
    (视频分享)

    CCF<br/>(扫码入会)

    CCF
    (扫码入会)

    版权所有 © 《计算机研究与发展》编辑部

    本系统由北京仁和汇智信息技术有限公司开发  百度统计