Abstract:Despite the many efforts made in recent years to achieve integrity attestation for mobile terminals,the lightweight integrity measurement and attestation mechanism for mobile embedded platforms remains as an open issue.This paper presents an integrity measurement scheme that runs in the ARM TrustZone security domain.To solve the TOC-TOU attack caused by the race condition defect of the binary integrity measurement mechanism,this paper proposes ProbeIMA,a dynamic monitoring model for system kernel and user program′s integrity based on the probe mechanism,to achieve dynamic detection integrity modify during the whole life cycle of system operation.An experiment and security analysis proves that ProbeIMA can effectively defend against TOC-TOU attacks and meet expected security requirements.Moreover,the solution proposed in this paper has better versatility and less performance loss.
汪自旺,庄毅,晏祖佳. 一种移动安全域动态完整性度量方案[J]. 小型微型计算机系统, 2021, 42(11): 2422-2427.
WANG Zi-wang,ZHUANG Yi,YAN Zu-jia. Probe-based Dynamic Integrity Measurement Scheme for Mobile Devices Using ARM Trust Zone. Journal of Chinese Computer Systems, 2021, 42(11): 2422-2427.
2021, Vol. 42 
