Research on credible start-up and I/O access control of embedded Linux based on trusted computing

Author

Guo, Jin ; Li, Bo

Author_Institution

Inst. of Astronaut. & Aeronaut., Univ. of Electron. Sci. Technol. of China, Chengdu, China

fYear

2011

fDate

7-10 Aug. 2011

Firstpage

2338

Lastpage

2342

Abstract

With the continuous increase of embedded system hacking, the security of system booting and I/O port is facing new challenge. Aiming at solving these problems, two secure designs that can enhance the security performance of start-up process and I/O port access control of embedded Linux is presented in this paper. Integrating Linux kernel security mechanism and security storage function of TPM (Trusted Platform Module) efficiently, two mechanisms are provided to expand security services which are not only credible booting, but also I/O access control mechanism with the support of safe file system to strengthen the security protection of system sensitive data. Two designs are robust through hardware-based protection and underlying security support relying on TPM chip so as to resist the illegal invasion through the test of booting and I/O control.

Keywords

Linux; authorisation; embedded systems; I/O access control; I/O port security; Linux kernel security mechanism; TPM; Trusted Platform Module; embedded Linux; embedded system hacking; file system safety; security storage function; system booting security; trusted computing; Access control; Booting; Encryption; File systems; Kernel; Linux; TPM; credible I/O control; trusted booting; trusted computing;

fLanguage

English

Publisher

ieee

Conference_Titel

Mechatronics and Automation (ICMA), 2011 International Conference on

Conference_Location

Beijing

ISSN

2152-7431

Print_ISBN

978-1-4244-8113-2

Type

conf

DOI

10.1109/ICMA.2011.5986351

Filename

5986351