计算机科学与应用

Vol.6 No.2 (February 2016)

基于固件的终端控制方法的设计
Design of Terminal Control Based on UEFI BIOS

 

作者:

王全民 :北京工业大学计算机学院,北京

赵小桐 , 王冠 :北京工业大学计算机学院,北京;可信计算北京市重点实验室,北京

孙亮 :中电科技(北京)有限公司,北京

 

关键词:

终端控制UEFI可信计算Terminal Control UEFI Trusted Computing

 

摘要:

目前,非法外联、非授权接入内网、用户非法操作等现象严重威胁着内网终端系统安全。虽然有大量厂商研发终端控制系统,但是在终端控制方面都存在重控制轻防护的现象。基于上述原因,基于固件的终端控制方法的设计,从固件层实现身份认证和授权开机,并使控制程序安全运行,将控制程序存放于服务器中,客户端可以在固件层通过网络连接远程服务器,进行身份验证并接收控制文件,接受控制文件对终端的控制,增强了控制代码的隔离性。

At present, the phenomena such as illegal outreach, unauthorized access and illegal operation se-riously threaten to the security of terminal system. Although there are a lot of terminal control systems, but they ignore the protection of control program. For these reasons, the design of ter-minal control based on UEFI BIOS will make control program run safely in UEFI. The control pro-gram is stored in the server. The client can connect to server through UEFI’s network service. It authenticates identity, receives control program and accepts control from the program. This design protects control program and enhances the isolation of control program.

文章引用:

王全民 , 赵小桐 , 王冠 , 孙亮 (2016) 基于固件的终端控制方法的设计。 计算机科学与应用, 6, 72-76. doi: 10.12677/CSA.2016.62009

 

参考文献

分享
Top