摘要： 操作系统安全增强技术是解决系统安全问题的有效手段，但无法保证系统基础可信。文章从分析可信和安全关系入手，提出可信增强概念。设计了操作系统可信增强框架，将可信机制和安全功能有机结合进安全体系结构设计中，并对实施和应用进行了研究。

关键词: 安全增强, 可信增强框架, 可信机制, 安全功能, 可信计算体系结构

Abstract: The traditional security enhanced technology based on operating system is usually the general solution to resolve the security problem, but can not guarantee base trust of the system. Starting with analysis of the relation between trust and security, this paper presents the concept of trusted enhancement and a trusted enhanced framework. It integrates the trusted mechanism and security capability into the design of security architecture. Then the enforcement and application of the framework is researched.

Key words: Security enhanced, Trusted enhanced framework, Trusted mechanism, Security capability, Trusted computing architecture

中图分类号: 

• TP316