摘要
针对现有的各类系统完整性保护方案在隔离性和可实现性的融合上的不足,提出一种兼顾隔离性和可实现性的基于分立架构的系统完整性保护模型。对多核CPU架构做较小改动,添加特权主核及其专有的页保护安全功能扩展,达到单颗CPU下监控系统和目标系统并行隔离独立运行。监控系统运行在主核上拥有更高特权,且监控功能不需要运行在从核上的目标系统的支持。监控系统通过设置目标系统内核代码页保护、内核数据页不可执行,以及内核数据完整性扫描功能充分保障目标系统内核的完整性,而应用层的完整性则可依托自身安全内核来解决。该模型在隔离性和可实现性上达到了较好的平衡,并且使用Bochs进行的模拟验证也表明该模型能够有效保护系统的完整性。
Focusing on the deficiency of various solutions of system integrity protection at present in integrating the isolation property and practicability,this paper presents a schism architecture-based system integrity protection model which takes both the isolation property and practicability into consideration. Through a minor revision to multi-core CPU architecture,and adding a privileged main core and the extension of its exclusive memory page protection security function,the parallel and independent running of the monitor system and the target system in isolation over a single CPU is achieved. The monitor running on main core has higher privilege,and its function doesn't need the support from the target system running on other cores. The monitor system can fully ensure the integrity of target system kernel by setting target system kernel code pages protection,kernel data page non-execution and kernel data integrity scanning function,while the integrity of applications level can be fixed by relying the security kernel in target system itself. The model achieves good balance between isolation property and practicability, and the prototype simulation by Bochs also shows that the proposed model can protect system 's integrity effectively.
出处
《计算机应用与软件》
CSCD
2016年第4期292-296,共5页
Computer Applications and Software
基金
核高基重大专项(2011ZX01039-001-002)
关键词
完整性
分立架构
多核
系统架构
操作系统
Integrity
Schism architecture
Multi-core
System architecture
Operating system
