A separated domain-based kernel model for trusted computing

Yanxiang, Fang; Changxiang, Shen; Jingdong, Xu; Gongyi, Wu

doi:10.1007/BF02831789

A separated domain-based kernel model for trusted computing

Trusted Architecture
Published: November 2006

Volume 11, pages 1424–1428, (2006)
Cite this article

Wuhan University Journal of Natural Sciences

Fang Yanxiang¹,
Shen Changxiang²,
Xu Jingdong¹ &
…
Wu Gongyi^nAff1

29 Accesses
Explore all metrics

Abstract

This paper fist gives an investigation on trusted computing on mainstream operation system (OS). Based on the observations, it is pointed out that Trusted Computing cannot be achieved due to the lack of separation mechanism of the components in mainstream OS. In order to provide a kind of separation mechanism, this paper proposes a separated domain-based kernel model (SDBKM), and this model is verified by non-interference theory. By monitoring and simplifying the trust dependence between domains, this model can solve problems in trust measurement such as deny of service (DoS) attack, Host security, and reduce the overhead of measurement.

This is a preview of subscription content, log in via an institution to check access.

Access this article

Log in via an institution

Price excludes VAT (USA)
Tax calculation will be finalised during checkout.

Instant access to the full article PDF.

Institutional subscriptions

References

Trusted Computing Group. TPM Main Specification Versions 1. 2 [EB/OL]. [2006-03-07].htt://www.trustedcomputinggroup.org.
Reid J F, Caelli W. J DRM, Trusted Computing and Operating System Architecture[C]//Proceeding of Australasian Information Security Workshop (AISW) 2005. Newcastle, Australia, Feb 2005.
Kelem N L, Reiertag R J. A, Separation Model for Virtual Machine Monitors[C]//Proceeding of the Sysposium on Research in Security and Privacy. Oakland, USA, May 1991.
Rushby J. Proof of Separability: A Verification Technique for a Class of Security Kernels[C]//Proceeding of the 5th International Symposium on Programming. Turin, Italy, April 1982.
Rushby J.Safe and Secure Computing Systems [M]. Malden: Blackwell Science Inc., 1989.
Google Scholar
Garfinkel T, Pfaff B, Chow J. Terra: A Virtual Machine-Based Platform for Trusted Computing[C]//Proceedings of the 19th ACM Symposium on Operating Systems Principles. Bolton Landing, USA, Oct 2003.
Microsoft. Security Model for the Next-Generation Secure Computing Base [EB/OL]. [2006-03-07].http://www.microsft.com
Sailer R, Zhang Xiaolan, Jaeger T,et al. Design and Implementation of a TCG-Based Integrity Measurement Architecture[C]//Proceeding of the 13th USENIX Security Symposium. San Diego, USA, Aug 2004.
Rushby JNoninterference, Transitivity, and Channel-Control Security Policies [R]. Menlo Park: Stanford Research Institute, 1992.
Google Scholar
Grace H N,Proposed Technical Evaluation Criteria for Trusted Computer Systems [M]. Bedford: The Mitre Corporation, 1979.
Google Scholar

Download references

Author information

Wu Gongyi
Present address: College of Information Technical Science, Nankai University, 300071, Tianjin, China

Authors and Affiliations

College of Information Technical Science, Nankai University, 300071, Tianjin, China
Fang Yanxiang & Xu Jingdong
Naval Institute of Computing Technology, 100841, Beijing, China
Shen Changxiang

Authors

Fang Yanxiang
View author publications
You can also search for this author in PubMed Google Scholar
Shen Changxiang
View author publications
You can also search for this author in PubMed Google Scholar
Xu Jingdong
View author publications
You can also search for this author in PubMed Google Scholar
Wu Gongyi
View author publications
You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Fang Yanxiang.

Additional information

Foundation item: Supported by the National Basic Research Program of China (G1999035801)

Biography: FANG Yanxiang (1975) male, Ph. D. candidate, research direction: system security.

Rights and permissions

Reprints and permissions

About this article

Cite this article

Yanxiang, F., Changxiang, S., Jingdong, X. et al. A separated domain-based kernel model for trusted computing. Wuhan Univ. J. Nat. Sci. 11, 1424–1428 (2006). https://doi.org/10.1007/BF02831789

Download citation

Received: 12 May 2006
Issue Date: November 2006
DOI: https://doi.org/10.1007/BF02831789

Key words

CLC number

TP 316

Access this article

Log in via an institution

Price excludes VAT (USA)
Tax calculation will be finalised during checkout.

Instant access to the full article PDF.

Institutional subscriptions

A separated domain-based kernel model for trusted computing

Abstract

Access this article

Similar content being viewed by others

A survey on security challenges in cloud computing: issues, threats, and solutions

Cloud Security Threats and Solutions: A Survey

Security Threats, Defense Mechanisms, Challenges, and Future Directions in Cloud Computing

References

Author information

Authors and Affiliations

Corresponding author

Additional information

Rights and permissions

About this article

Cite this article

Key words

CLC number

Navigation

A separated domain-based kernel model for trusted computing

Abstract

Access this article

Similar content being viewed by others

A survey on security challenges in cloud computing: issues, threats, and solutions

Cloud Security Threats and Solutions: A Survey

Security Threats, Defense Mechanisms, Challenges, and Future Directions in Cloud Computing

References

Author information

Authors and Affiliations

Corresponding author

Additional information

Rights and permissions

About this article

Cite this article

Share this article

Key words

CLC number

Search

Navigation