Trusted computing and chain of trust are the very mechanisms to solve the security problems of information system. A chain of trust is established by validating each component of hardware and software from the bottom up. There is an urgent need to test the chain of trust according to the specification of TC to ensure its security. This paper presents a test method on chain of trust by model checking. The purpose is to confirm that the measurements stored and reported by the platform configuration register can successfully discriminate a normal boot sequence from an insecure one. As a result, our test shows that the chain of trust on some popular trusted computing platforms donȁ9;t meet the specifications of Trusted Computing Group.
展开▼
