| In the information age, since the development and use of information technology are changing people's lifestyle as well as the ways of production and management, the information becomes one of the most critical assets. Although the legacy network security system, which is typically consisted of firewall, intrusion detection system, and virus protection, could give us security protection against the external environment, there are still security gap to be filled. As a matter of fact, many of the vulnerable threats are from interior. In order to solve these issues, we have to develop a trusted transitive mode. Based on the trustworthy of the terminal, which is the root of the trustworthy, we could build up a trustable chain, from the terminal machine, application running on the machine, to the people who are using the application on the machine.The transitive trustworthy is that the root of trustworthy guarantees the authenticity and integrity of the code which will be executed on the next level. As soon as the checkup is ensured, the system will pass over the trustworthy to the next level. Through this way, the range of the trustworthy is extended level by level. The control process is passed in the same way. Based on the above, the scope of system trustworthy is extended.This paper focuses on the trustable boot procedure on Windows platforms, including POST, static authentication module of the OS, authentication MBR respectively, boot loader, as well as the static section of the OS kernel. As soon as the authentication passes, the control process is passed to the MBR and normal boot procedure go ahead. Otherwise the error message shows up and the trustworthy recovery procedure starts. |
PDF Full Text Request