通信学报2025,Vol.46Issue(4):1-14,14.DOI:10.11959/j.issn.1000-436x.2025047
基于TPCM可信根的双体系可信终端计算架构
Dual system trusted terminal computing architecture based on TPCM RoT
摘要
Abstract
Due to the limitations of the times,the von Neumann computer system failed to consider the modern security environment,and the computing structure lacked independent protective components based on hardware trusted roots.A trusted terminal architecture based on the Chinese national standard GB/T 40650-2021 trusted platform control module(TPCM)trusted root was proposed.A dual architecture was adopted to implement a progressive parallel trusted execu-tion environment architecture based on trusted roots,solving the problems of terminal device source,platform execution environment,and terminal device trusted management from the perspectives of hardware trusted root chips and underly-ing basic software.The method ensured that the TPCM trusted root chip of the terminal device and the tested basic com-ponents were powered on first,completing the trusted measurement of the CPU execution environment,and controlling the CPU power and device initialization configuration,gradually performing trusted diffusion during the computer startup process.It can achieve reliable and trustworthy network applications while ensuring the security and trustworthi-ness of the device itself,realizing the privacy,security protection,and network security of device data.关键词
国标GB/T40650-2021/可信根/可信平台控制模块/态度量/可信执行环境Key words
Chinese national standard GB/T 40650-2021/RoT/TPCM/dynamic measurement/trusted execution environment分类
信息技术与安全科学引用本文复制引用
黄坚会,张江江,沈昌祥,张建标..基于TPCM可信根的双体系可信终端计算架构[J].通信学报,2025,46(4):1-14,14.基金项目
北京市自然科学基金资助项目(No.M21039) The Natural Science Foundation of Beijing Municipality(No.M21039 (No.M21039)
