为保证电力系统嵌入式装置能够安全可信启动,提出了一种基于可信平台控制模块(TPCM)的轻量型可信启动方法。以TPCM中固化的COS作为硬件可信根,上电之后优先于CPU启动,挂起CPU复位信号,成功验证u-boot完整性后,CPU解除复位并启动,并通过增加安全用户、设置密码保护和过滤相关指令的方法加强u-boot管理,同时利用签名及加密技术对内核进行完整性校验,建立一条从装置上电开机到内核启动的信任链。该方法利用TPCM芯片的安全可靠性,通过硬件加密方法实现密钥的保护,保证整条启动链的安全可信。该方法已在电力系统中的某些智能监测终端中应用。

In order to ensure that the embedded devices of power system can startup safely and reliably,a light-weight trusted startup method based on trusted platform control module (TPCM) is designed.The COS solidified in TPCM is regarded as the trusted root of the hardware.After power on,it takes precedence of the CPU to start and the CPU resetting signal is suspended.The CPU resetting signal will be released after successfully verifying the integrity of u-boot.And it enhances the u-boot management by adding secure users,setting password protection and filtering related commands.At the same time,the integrity of the kernel is verified by using signature and encryption technology to establish a trust chain from device power on to kernel startup.Using the security and reliability of TPCM chip,this method can protect the key through hardware encryption and ensure the security and credibility of the whole startup chain.This method has been applied in some intelligent monitoring terminals of power systems.