摘要: 可信计算的RSA密钥机制会制约运算速度。为此,提出一种基于混合加密的可信软件栈数据封装方案。介绍可信软件栈的结构以及密封过程和解封过程,改进可信密码模块功能函数。实验结果表明,该方案能减少加密时间,适用于较大数据量的密封,能在较小性能损失的情况下,保障用户数据安全。
关键词:
可信计算,
数据封装,
混合加密,
可信软件栈,
平台状态寄存器
Abstract: The RSA key mechanism of Trusted Computing(TC) restricts encryption speed. In order to reduce time, hybrid key mechanism of data seal base on Trusted Software Stack(TSS) is proposed. The structure of TSS is introduced, the process of sealing and unsealing is illustrated and function of Trusted Platform Module(TPM) is improved. Experimental results show that the scheme can reduce the encryption time and it is suitable for encryption of mass data and can wrap data for protecting privacy efficiently with little cost.
Key words:
Trusted Computing(TC),
data encapsulation,
hybrid encryption,
Trusted Software Stack(TSS),
Platform Configuration Registers (PCR)
中图分类号:
闫建红, 彭新光. 基于混合加密的可信软件栈数据封装方案[J]. 计算机工程, 2012, 38(06): 123-125.
YAN Jian-Gong, BANG Xin-Guang. Data Encapsulation Scheme in Trusted Software Stack Based on Hybrid Encryption[J]. Computer Engineering, 2012, 38(06): 123-125.