摘要
基板管理控制器(baseboard management controller,BMC)和基本输入输出系统(basic input output system,BIOS)是服务器的重要固件,近年来对BMC和BIOS的攻击手段越来越丰富,对服务器的安全造成了严重的威胁.针对服务器中BMC与BIOS固件存在的安全隐患,基于可信计算技术,研究了服务器的安全启动机制,利用自研的国产BMC与国产可信密码模块(trusted cryptography module,TCM),设计了BMC的可信固件.BMC和TCM作为系统的信任根,先于服务器进行上电启动,完成对BMC与BIOS Boot Block的主动度量之后服务器才能加电启动,从而实现了服务器的安全启动控制功能,构建起了完整的信任链,符合我国的可信平台控制模块(TPCM)规范,是TPCM思想的具体实现.结果表明:在服务器启动过程中可以检测BMC及BIOS固件的完整性,及时发现固件是否被恶意篡改,该技术有着广阔的应用前景.
Baseboard management controller (BMC) and basic input output system (BIOS) are important firmware in server. Currently, BMC and BIOS are facing with a series of security threats, which threaten the functions of the server. One feasible and effective solution for those threats is leveraging trusted computing technology. This paper researches secure boot mechanism for server and designs trusted firmware of BMC combined with domestic BMC and trusted cryptography module (TCM). As the trust root of the system,BMC and TCM can start before the server is powered on. Af ter completing the measurement of the credibility and integrity of BMC and BIOS Boot Block, the server can be powered on. With the trusted boot method? the complete trust chain is bui lt , which accords with China’s trusted platform control module (TPCM) specification. The results of this paper show that it can detected if the BMC or BIOS firmware has been maliciously tampered. This research realizes the technology of TPCM which can be widely used.
出处
《信息安全研究》
2017年第9期823-831,共9页
Journal of Information Security Research
基金
北京市科学技术委员会基金项目(Z161100001616007)
关键词
可信计算
信任链
基板管理控制器
基本输入输出系统
可信密码模块
trusted computing
trust chain
baseboard management controller (BMC)
basic input output system (BIOS)
trusted cryptography module (TCM)
作者简介
suzhy@inspur.com硕士,高级工程师,主要研究方向为信息安全、丧入式系统.suzhy@inspur.com
