中大機構典藏-NCU Institutional Repository-提供博碩士論文、考古題、期刊論文、研究計畫等下載:Item 987654321/98437
English  |  正體中文  |  简体中文  |  全文笔数/总笔数 : 83776/83776 (100%)
造访人次 : 59351207      在线人数 : 758
RC Version 7.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
搜寻范围 查询小技巧:
  • 您可在西文检索词汇前后加上"双引号",以获取较精准的检索结果
  • 若欲以作者姓名搜寻,建议至进阶搜寻限定作者字段,可获得较完整数据
    •  进阶搜寻


    jsp.display-item.identifier=請使用永久網址來引用或連結此文件: https://ir.lib.ncu.edu.tw/handle/987654321/98437


    题名: TMZone: 基於 Arm TrustZone 提供安全記憶體池給 Linux 核 心的驅動程式;TMZone - Trusted Memory Pool for Linux kernel driver based on Arm TrustZone
    作者: 徐易中;Hsu, Yi-Chung
    贡献者: 資訊工程學系
    关键词: ARM TrustZone;圖形處理單元;MMU;可信執行環境;安全的隔離;ARM TrustZone;GPU;MMU;Trusted Execution Environment;Security isolation
    日期: 2025-07-30
    上传时间: 2025-10-17 12:46:41 (UTC+8)
    出版者: 國立中央大學
    摘要: Linux 核心廣泛應用於現代嵌入式系統中,從工業設備到智慧型手機,皆依賴其提供如記憶體管理等基本功能。由於其開放原始碼與高度擴展性,具有高度異質性與複雜性的核心驅動程式已成為攻擊者的主要目標。雖然現有防護機制能提升安全性,但往往需要重新設計驅動程式架構,無法實現多個驅動程式間的記憶體存取隔離,且帶來顯著的效能負擔。為解決這些挑戰,本文提出 TMZone,一種基於 ARM TrustZone 的 Linux 核心驅動程式信任記憶池機制。TMZone 能在不修改原始驅動程式的情況下,提供安全隔離、動態存取控制、低侵入性與高度相容性。TMZone 透過擴展記憶體操作,結合 Trusted Firmware 層級的頁表式存取控制,以及加密與資料完整性驗證,有效確保驅動程式資料的機密性與完整性。實驗結果顯示,TMZone 在 ARM Mali GPU 驅動程式上的效能開銷低於 6%,展現出實務可行性與廣泛部署潛力。;The Linux kernel is widely adopted in modern embedded systems, powering everything from industrial devices to smartphones by providing essential functionalities such as memory management. Due to its open-source and extensible nature, kernel drivers-characterized by their high heterogeneity and complexity-have become prime targets for attackers. While existing protection mechanisms can enhance security, they often require driver rearchitecting, fail to enforce memory access isolation between multiple drivers, and impose significant performance overhead.
    To address these challenges, this paper proposes TMZone, a trusted memory pool for Linux kernel drivers built on ARM TrustZone. TMZone enables secure isolation, dynamic accessibility, low invasiveness, and high compatibility without altering the original driver program. By extending memory operations and leveraging page table-based access control within Trusted Firmware along with encryption and data integrity verification. TMZone effectively ensure the confidentiality and integrity of driver data. Experimental results show that TMZone introduces less than 6% performance overhead on ARM Mali GPU drivers, demonstrating its practical feasibility and potential for broad deployment.
    显示于类别:[資訊工程研究所] 博碩士論文

    文件中的档案:

    档案 描述 大小格式浏览次数
    index.html0KbHTML12检视/开启


    在NCUIR中所有的数据项都受到原著作权保护.

    社群 sharing

    ::: Copyright National Central University. | 國立中央大學圖書館版權所有 | 收藏本站 | 設為首頁 | 最佳瀏覽畫面: 1024*768 | 建站日期:8-24-2009 :::
    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - 隱私權政策聲明