Secure and reliable bootstrap architecture

William A. Arbaugh, David J. Farber, Jonathan M. Smith

研究成果: Conference article査読

327 被引用数 (Scopus)

抄録

In a computer system, the integrity of lower layers is typically treated as axiomatic by higher layers. Under the presumption that the hardware comprising the machine (the lowest layer) is valid, integrity of a layer can be guaranteed if and only if: (1) the integrity of the lower layers is checked, and (2) transitions to higher layers occur only after integrity checks on them are complete. The resulting integrity `chain' inductively guarantees system integrity. When these conditions are not met, as they typically are not in the bootstrapping (initialization) of a computer system, no integrity guarantees can be made. Yet, these guarantees are increasingly important to diverse applications such as Internet commerce, security systems, and `active networks.' In this paper, we describe the AEGIS architecture for initializing a computer system. It validates integrity at each layer transition in the bootstrap process. AEGIS also includes a recovery process for integrity check failures, and we show how this results in robust systems.

本文言語English
ページ(範囲)65-71
ページ数7
ジャーナルProceedings of the IEEE Computer Society Symposium on Research in Security and Privacy
出版ステータスPublished - 1997 1 1
外部発表はい
イベントProceedings of the 1997 IEEE Symposium on Security and Privacy - Oakland, CA, USA
継続期間: 1997 5 41997 5 7

ASJC Scopus subject areas

  • Software

フィンガープリント 「Secure and reliable bootstrap architecture」の研究トピックを掘り下げます。これらがまとまってユニークなフィンガープリントを構成します。

引用スタイル