TrustedComputingTPMandTruestedBoot(PPT 116頁)
TrustedComputingTPMandTruestedBoot(PPT 116頁)內容簡介
可信平台的基本特性
可信計算平台的基本體係
可信平台模塊(TPM)部件
軟件接口和服務
TCG編程接口
Trusted Boot
Trusted Computing TPM Trusted Boot
Outline
Trusted Computing
TCG Architecture
Agenda
Fundamental Trusted Platform Features
保護能力(Protected Capability)
對外證明(Attestation)(Cont..)
對外證明(Attestation)
完整性度量
完整性存儲和報告
可信計算平台的信任根
RTM
RTS
RTR
Trusted Building Blocks (TBB)
Example of a TBB
信任邊界(The Trust Boundary)
信任鏈(Transitive Trust)
建立過程
完整性測量(Integrity Measurement)
Stored Measurement Log (SML)
procedure
Measurement on Linux
Linux Application Measurements
Integrity Reporting Protocol
協議說明
信息交換保護功能(1)
信息交換保護功能(2)
信息交換保護功能(3)
Procedure for Sealing/Unsealing
信息交換保護功能(4)
密鑰和數據的存儲保護方法
Comments(Cont..)
Comments
密鑰屬性
密鑰類型 (1)
密鑰類型 (2)
密鑰類型(3)
Loading TPM Keys(1)
Loading TPM Keys(2)
Loading TPM Keys(3)
Loading TPM Keys(4)
TPM組件體係結構
PCR—Platform Configuration Register
PCR Usage
Endorsement Key (EK)
證明身份密鑰--AIK(Attestation Identity Keys)
TPM Startup
TPM States
Enabled/Disabled
Active/Deactive
Physical Presence
可信計算平台軟件層次結構
Layers
TDDL接口
TCS接口
TSP接口
會話:用於驗證執行TPM命令的授權
A message in an authorized session
Naming Conventions
消息格式
Command Ordinals
包長與字節次序
發送命令包和接收響應包
向TPM發TPM_Reset()命令
向TPM發TPM_GetCapability()命令
TPM open source software
Open Source Software high-level hierarchy
TPM-Manager
TPM commands
Some TPM_Commands
TPM_PCRRead
TCG BIOS Interface
Stage1.s
Trusted GRUB
tboot
static chain of trust
shortcomings of SRTM
dynamic chain of trust
dynamic PCRs
How TXT works
TXT components
TXT integrity checking
Launch Sequence
MLE Architecture Overview
MLE Launch
TXT detection
Loading the SINIT AC Module
Matching an AC Module
TXT Heap Initialization
Rendezvousing Processors and Saving State
MTRR Setup
executes the GETSEC[SENTER] instruction
Definitions
GETSEC [SENTER] Sequence
Thank you
..............................
可信計算平台的基本體係
可信平台模塊(TPM)部件
軟件接口和服務
TCG編程接口
Trusted Boot
Trusted Computing TPM Trusted Boot
Outline
Trusted Computing
TCG Architecture
Agenda
Fundamental Trusted Platform Features
保護能力(Protected Capability)
對外證明(Attestation)(Cont..)
對外證明(Attestation)
完整性度量
完整性存儲和報告
可信計算平台的信任根
RTM
RTS
RTR
Trusted Building Blocks (TBB)
Example of a TBB
信任邊界(The Trust Boundary)
信任鏈(Transitive Trust)
建立過程
完整性測量(Integrity Measurement)
Stored Measurement Log (SML)
procedure
Measurement on Linux
Linux Application Measurements
Integrity Reporting Protocol
協議說明
信息交換保護功能(1)
信息交換保護功能(2)
信息交換保護功能(3)
Procedure for Sealing/Unsealing
信息交換保護功能(4)
密鑰和數據的存儲保護方法
Comments(Cont..)
Comments
密鑰屬性
密鑰類型 (1)
密鑰類型 (2)
密鑰類型(3)
Loading TPM Keys(1)
Loading TPM Keys(2)
Loading TPM Keys(3)
Loading TPM Keys(4)
TPM組件體係結構
PCR—Platform Configuration Register
PCR Usage
Endorsement Key (EK)
證明身份密鑰--AIK(Attestation Identity Keys)
TPM Startup
TPM States
Enabled/Disabled
Active/Deactive
Physical Presence
可信計算平台軟件層次結構
Layers
TDDL接口
TCS接口
TSP接口
會話:用於驗證執行TPM命令的授權
A message in an authorized session
Naming Conventions
消息格式
Command Ordinals
包長與字節次序
發送命令包和接收響應包
向TPM發TPM_Reset()命令
向TPM發TPM_GetCapability()命令
TPM open source software
Open Source Software high-level hierarchy
TPM-Manager
TPM commands
Some TPM_Commands
TPM_PCRRead
TCG BIOS Interface
Stage1.s
Trusted GRUB
tboot
static chain of trust
shortcomings of SRTM
dynamic chain of trust
dynamic PCRs
How TXT works
TXT components
TXT integrity checking
Launch Sequence
MLE Architecture Overview
MLE Launch
TXT detection
Loading the SINIT AC Module
Matching an AC Module
TXT Heap Initialization
Rendezvousing Processors and Saving State
MTRR Setup
executes the GETSEC[SENTER] instruction
Definitions
GETSEC [SENTER] Sequence
Thank you
..............................
用戶登陸
TPM生產維護熱門資料
TPM生產維護相關下載