The Research Of Virtual TPM Based On UEFI

UEFI(Unified Extensible Firmware Interface) is introduced as a upgrade program which is used to substitute traditional BIOS in a computer system by Intel. Compared with the traditional BIOS, it provides great scalability and customization. UEFI is designed by a high modular. Once users meet the UEFI standard, they can be convenient to develop applications and drivers program.TPM(Trusted Platform Module) is considered as the core module in trusted computing area .It is an important security chip in the new computer's motherboard. It includes processor unit, memory unit, key management unit and other rich resources. But a lot of old motherboards is lack of TPM ,the TPM hardware can not run multiple instances of protection on the platform and the TPM hardware debugging and scalability are not satisfied. So the software TPM becomes a hot topic in the current research area.This thesis mainly described UEFI,TPM and other industry-standard development and present status, and then discussed UEFI framework and TPM core technology. On this basis, this thesis focused on UEFI virtual TPM driver program design and its application instance design. In the virtual TPM driver designing, based on detailed analysis of standard UEFI driver model ,this paper firstly presented the framework design of a virtual TPM core driver. Secondly, the random number generator under the UEFI system was achieved according to the need of the virtual TPM module. Finally, based on the analysis of the driver binding protocol and the device path protocol, a virtual TPM protocol which was user-defined and was used to meet the core functionality was achieved. In the process, this paper presented data communication solutions between the UEFI driver and UEFI Shell application. In order to use the virtual TPM design, this paper designed and implemented two kinds of application of security which were based on the UEFI Shell– the file encryption system and the document monitoring system through the specific data structures and algorithms.The experiment was completed under the UEFI simulator which was based on Windows platform and the experimental results fully met the expected results.