基于PUF的TEE可信根生成方法研究
Research on Generation Method of TEE Trusted Root Based on PUF
刘国 1焦玉雷 1陈弈 1李晓玥1
作者信息
摘要
随着信息技术的快速发展,可信执行环境(TEE)在保障系统安全方面发挥着越来越重要的作用.然而,传统的TEE可信根生成方法存在诸多安全隐患,如易被复制、易遭受攻击等.因此,研究一种安全、可靠的可信根生成方法具有重要意义.针对现有TEE可信根生成方法的不足,提出了一种基于物理不可克隆函数(PUF)的TEE可信根生成方法.该方法利用PUF的唯一性和不可预测性,结合TEE的安全特性,生成具有唯一标识和高度安全性的可信根.为了验证所提方法的有效性,使用强PUF芯片和FPGA搭建了硬件验证平台,对所述方法进行了实验验证.实验结果表明,基于PUF的TEE可信根生成方法能够成功生成具有唯一性的可信根.
Abstract
With the rapid development of information technology,Trusted Execution Environment(TEE)is playing an increasingly important role in safeguarding system security.However,traditional TEE trusted root generation methods have many security risks,such as being easily replicated and vulnerable to attacks.Therefore,it is of great significance to research a secure and reliable trusted root generation method.In order to solve the problem of the existing trusted root generation methods,in this paper,a TEE trusted root generation method is proposed based on Physical Unclonable Functions(PUF),utilizing the uniqueness and unpredictability of PUF,combined with the security characteristics of TEE,a trusted root with unique identification and high security is generated.To verify the effectiveness of the proposed method,a detailed experimental scheme is designed and tested in a real environment.The experimental results show that the TEE trusted root generation method based on PUF can successfully generate a trusted root with uniqueness.
关键词
物理不可克隆函数/可信执行环境/可信根生成/实时安全性/物理存储介质攻击防御Key words
Physically Unclonable Function(PUF)/Trusted Execution Environment(TEE)/Trusted Root Generation/Real-time Security/Defense Against Physical Storage Media Attacks引用本文复制引用
基金项目
国家重点研发计划资助项目(2020YFB2104600)
出版年
2024
NETL
NSTL
万方数据