摘要：

分析Windows 7中的安全启动技术，研究基于可信计算的BitLocker驱动器加密的启动流程。针对实现过程中存在的BitLocker、Bootmgr安全隐患，设计BitLocker、Bootmgr绕过方案以及地址空间格局随机化的应对方案，验证了Windows 7的安全启动保护措施仍可能被Bootkit等恶意软件攻破。

关键词: BitLocker技术, Bootkit技术, 安全启动, 可信计算

Abstract:

This paper analyzes Windows 7 secure boot technology. It researches the boot flow of BitLocker drive encryption based on trusted computing. Aiming at the BitLocker and Bootmgr secure vulnerabilities in the implementation process, BitLocker and Bootmgr circumvention schemes and Address Space Layout Randomization(ASLR) coping scheme are designed in order to prove that the secure boot measure of Windows 7 can still be broken through by malicious software such as Bootkit.

Key words: BitLocker technology, Bootkit technology, secure boot, trusted computing

中图分类号: 

• TP393