High performance ECC-based OS integrity check for embedded systems
碩士 === 國立中興大學 === 資訊科學與工程學系所 === 101 === Security maintenance has always been highly critical in the development of information systems. This is true for modern embedded systems. An embedded system with a security mechanism offers protection for the entire system, and, in some products, the protecti...
| Main Authors: | , |
|---|---|
| Other Authors: | |
| Format: | Others |
| Language: | zh-TW |
| Published: |
2013
|
| Online Access: | http://ndltd.ncl.edu.tw/handle/38803521878289027915 |
| id |
ndltd-TW-101NCHU5394008 |
|---|---|
| record_format |
oai_dc |
| spelling |
ndltd-TW-101NCHU53940082017-11-12T04:38:30Z http://ndltd.ncl.edu.tw/handle/38803521878289027915 High performance ECC-based OS integrity check for embedded systems 基於錯誤更正碼之高效能嵌入式作業系統完整性驗證 Chih-Huang Chang 張志煌 碩士 國立中興大學 資訊科學與工程學系所 101 Security maintenance has always been highly critical in the development of information systems. This is true for modern embedded systems. An embedded system with a security mechanism offers protection for the entire system, and, in some products, the protection covers an even wider range of aspects. Secure Boot can verify the completeness and security of files, and can be adequately applied in the protection mechanism. Secure Boot checks the completeness and security of files that are stored in the system prior to booting. When the boot loader performs the booting process, Secure Boot first checks if the file is complete before determining whether the file can be loaded and the booting process can be performed. In context of the development of modern embedded systems, increasing numbers of functions are integrated, systems possess development qualities of imaging products, and files sizes are rapidly increasing. With the application of Secure Boot, whether file size prolongs file verification and slows booting remains to be determined. To sustain the functions of Secure Boot, booting time should be kept at a reasonable range. Current system analyses indicate that NAND Flash ECC can perform file verification, as well as compress related files. The researcher in this study considered these findings and proposed a different approach. Unlike the conventional approach, where Secure Boot is used to verify all files, the researcher used the ECC stored in the NAND flash to verify and enhance the verification effectiveness and to maintain verification standards. The experiments showed that the proposed NAND Flash ECC verification approach effectively verifies the completeness of files and addresses prolonged verification and booting time. Compared to systems without Secure Boot, no significant difference was observed regarding booting time, whereas the proposed NAND Flash ECC approach provides enhanced protection Pi-Chung Wang 王丕中 2013 學位論文 ; thesis 37 zh-TW |
| collection |
NDLTD |
| language |
zh-TW |
| format |
Others
|
| sources |
NDLTD |
| description |
碩士 === 國立中興大學 === 資訊科學與工程學系所 === 101 === Security maintenance has always been highly critical in the development of information systems. This is true for modern embedded systems. An embedded system with a security mechanism offers protection for the entire system, and, in some products, the protection covers an even wider range of aspects. Secure Boot can verify the completeness and security of files, and can be adequately applied in the protection mechanism.
Secure Boot checks the completeness and security of files that are stored in the system prior to booting. When the boot loader performs the booting process, Secure Boot first checks if the file is complete before determining whether the file can be loaded and the booting process can be performed.
In context of the development of modern embedded systems, increasing numbers of functions are integrated, systems possess development qualities of imaging products, and files sizes are rapidly increasing. With the application of Secure Boot, whether file size prolongs file verification and slows booting remains to be determined. To sustain the functions of Secure Boot, booting time should be kept at a reasonable range.
Current system analyses indicate that NAND Flash ECC can perform file verification, as well as compress related files. The researcher in this study considered these findings and proposed a different approach. Unlike the conventional approach, where Secure Boot is used to verify all files, the researcher used the ECC stored in the NAND flash to verify and enhance the verification effectiveness and to maintain verification standards.
The experiments showed that the proposed NAND Flash ECC verification approach effectively verifies the completeness of files and addresses prolonged verification and booting time. Compared to systems without Secure Boot, no significant difference was observed regarding booting time, whereas the proposed NAND Flash ECC approach provides enhanced protection
|
| author2 |
Pi-Chung Wang |
| author_facet |
Pi-Chung Wang Chih-Huang Chang 張志煌 |
| author |
Chih-Huang Chang 張志煌 |
| spellingShingle |
Chih-Huang Chang 張志煌 High performance ECC-based OS integrity check for embedded systems |
| author_sort |
Chih-Huang Chang |
| title |
High performance ECC-based OS integrity check for embedded systems |
| title_short |
High performance ECC-based OS integrity check for embedded systems |
| title_full |
High performance ECC-based OS integrity check for embedded systems |
| title_fullStr |
High performance ECC-based OS integrity check for embedded systems |
| title_full_unstemmed |
High performance ECC-based OS integrity check for embedded systems |
| title_sort |
high performance ecc-based os integrity check for embedded systems |
| publishDate |
2013 |
| url |
http://ndltd.ncl.edu.tw/handle/38803521878289027915 |
| work_keys_str_mv |
AT chihhuangchang highperformanceeccbasedosintegritycheckforembeddedsystems AT zhāngzhìhuáng highperformanceeccbasedosintegritycheckforembeddedsystems AT chihhuangchang jīyúcuòwùgèngzhèngmǎzhīgāoxiàonéngqiànrùshìzuòyèxìtǒngwánzhěngxìngyànzhèng AT zhāngzhìhuáng jīyúcuòwùgèngzhèngmǎzhīgāoxiàonéngqiànrùshìzuòyèxìtǒngwánzhěngxìngyànzhèng |
| _version_ |
1718561098710384640 |