Universal safe intelligent terminal starting method

一种通用的智能终端安全启动方法

Abstract

The invention discloses a universal safe intelligent terminal starting method. According to the method, firstly, a safe starting module s-boot is arranged at the starting skipping position of an intelligent terminal, wherein the integrity reference value of a bootstrap program and the integrity reference value of an operating system are stored; secondly, s-boot is executed after the intelligent terminal is started, the storage positions of the bootstrap program and the operating system of the intelligent terminal are acquired; thirdly, the bootstrap program is installed on the s-boot, the integrity measuring value of the bootstrap program is obtained, the bootstrap program is verified, and if the bootstrap program does not pass the verification, the intelligent terminal is forced to reset; if the bootstrap program passes the verification, the operating system continues to be installed, the integrity of the operating system is measured, the integrity measuring value of the operating system is obtained, the operating system is verified, and if the operating system passes the verification, the bootstrap program is started; if not, the intelligent terminal is forced to reset. The safe starting process of the system can be guaranteed without making other change on a terminal device.
本发明公开了一种通用的智能终端安全启动方法。本方法为:1)在智能终端开机跳转位置设置安全启动模块s-boot;其中保存有引导程序的完整性参考值和操作系统的完整性参考值;2)该智能终端开机后执行s-boot,获取该智能终端的引导程序及操作系统的存储位置;3)s-boot装载该引导程序,得到该引导程序的完整性度量值,对该引导程序进行验证,如果验证未通过,则强制该智能终端复位;如果验证通过,则继续装载操作系统,并对其进行完整性度量,得到该操作系统的完整性度量值,对该操作系统进行验证,如果验证通过,则启动引导程序;否则强制该智能终端复位。终端设备上不需要作其他的更改,即可以保证系统的安全启动过程。

Claims

Description

Topics

Download Full PDF Version (Non-Commercial Use)

Patent Citations (2)

    Publication numberPublication dateAssigneeTitle
    CN-101038556-ASeptember 19, 2007中国科学院软件研究所可信引导方法及其系统
    CN-101295340-AOctober 29, 2008北京工业大学Credible platform module and active measurement method thereof

NO-Patent Citations (0)

    Title

Cited By (4)

    Publication numberPublication dateAssigneeTitle
    CN-104537302-AApril 22, 2015宇龙计算机通信科技(深圳)有限公司Terminal safety starting method and device, and terminal
    CN-104537302-BDecember 12, 2017宇龙计算机通信科技(深圳)有限公司一种终端的安全启动方法、装置及终端
    CN-104750532-AJuly 01, 2015东南大学Android-based dual-system land verification PAD (portable android device) and starting method
    CN-105426750-AMarch 23, 2016致象尔微电子科技(上海)有限公司一种嵌入式系统的启动方法及嵌入式装置