Hardware security (original) (raw)
硬體安全(hardware security)是和密碼學有關的領域,和硬體設計、存取控制、安全多方计算、安全密鑰儲存、確認代碼真實性有關,並且確保產品零件的供應鏈也符合相關的要求。 硬件安全模块(HSM)是實體的計算裝置,監管及管理用在的數位簽章,並且提供安全加密協處理器。這些模組以往是用連接到电子计算机或服务器的外接卡或是外部裝置來進行。 有些供應者認為硬件安全和軟體安全的差異在於:硬件安全是用「非图灵机」邏輯(组合逻辑电路或有限状态机)來實現。有一種實現方式稱為hardsec,是用现场可编程逻辑门阵列(FPGA)來實現非图灵机的安全控制,也可以配合軟體的彈性,結合軟體及硬體的安全性。 是類似軟體後門的概念,是指在硬件上預留,可以有進階功能的介面。和這個概念有關的是(HT),是電路上惡意的修改,在有關積體電路的議題可能會提及此一概念。 物理不可複製函數(PUF)是物體實體,封裝在物理性的結構中,很容易評估,但很難預測結果。而且,實體無法複製函數要很容易製造,但在實務上要作到幾乎無法複製,就算是完全一樣的生產方式也會有不一樣的成品。這個類似是硬體上的單向函數。「物理不可複製函數」(PUF)的名稱可能會造成誤解,有些PUF可以複製,但大部份的PUF的雜訊很大,無法滿足數學函數的要求。現今的PUF多半會放在集成电路中,會用在有高度資訊安全要求的應用中。
| Property | Value |
|---|---|
| dbo:abstract | Hardware security as a discipline originated out of cryptographic engineering and involves hardware design, access control, secure multi-party computation, secure key storage, ensuring code authenticity, measures to ensure that the supply chain that built the product is secure among other things. A hardware security module (HSM) is a physical computing device that safeguards and manages digital keys for strong authentication and provides cryptoprocessing. These modules traditionally come in the form of a plug-in card or an external device that attaches directly to a computer or network server. Some providers in this discipline consider that the key difference between hardware security and software security is that hardware security is implemented using "non-Turing-machine" logic (raw combinatorial logic or simple state machines). One approach, referred to as "hardsec", uses FPGAs to implement non-Turing-machine security controls as a way of combining the security of hardware with the flexibility of software. Hardware backdoors are backdoors in hardware. Conceptionally related, a hardware Trojan (HT) is a malicious modification of electronic system, particularly in the context of integrated circuit. A physical unclonable function (PUF) is a physical entity that is embodied in a physical structure and is easy to evaluate but hard to predict. Further, an individual PUF device must be easy to make but practically impossible to duplicate, even given the exact manufacturing process that produced it. In this respect it is the hardware analog of a one-way function. The name "physical unclonable function" might be a little misleading as some PUFs are clonable, and most PUFs are noisy and therefore do not achieve the requirements for a function. Today, PUFs are usually implemented in integrated circuits and are typically used in applications with high security requirements. Many attacks on sensitive data and resources reported by organizations occur from within the organization itself. (en) 硬體安全(hardware security)是和密碼學有關的領域,和硬體設計、存取控制、安全多方计算、安全密鑰儲存、確認代碼真實性有關,並且確保產品零件的供應鏈也符合相關的要求。 硬件安全模块(HSM)是實體的計算裝置,監管及管理用在的數位簽章,並且提供安全加密協處理器。這些模組以往是用連接到电子计算机或服务器的外接卡或是外部裝置來進行。 有些供應者認為硬件安全和軟體安全的差異在於:硬件安全是用「非图灵机」邏輯(组合逻辑电路或有限状态机)來實現。有一種實現方式稱為hardsec,是用现场可编程逻辑门阵列(FPGA)來實現非图灵机的安全控制,也可以配合軟體的彈性,結合軟體及硬體的安全性。 是類似軟體後門的概念,是指在硬件上預留,可以有進階功能的介面。和這個概念有關的是(HT),是電路上惡意的修改,在有關積體電路的議題可能會提及此一概念。 物理不可複製函數(PUF)是物體實體,封裝在物理性的結構中,很容易評估,但很難預測結果。而且,實體無法複製函數要很容易製造,但在實務上要作到幾乎無法複製,就算是完全一樣的生產方式也會有不一樣的成品。這個類似是硬體上的單向函數。「物理不可複製函數」(PUF)的名稱可能會造成誤解,有些PUF可以複製,但大部份的PUF的雜訊很大,無法滿足數學函數的要求。現今的PUF多半會放在集成电路中,會用在有高度資訊安全要求的應用中。 (zh) |
| dbo:wikiPageExternalLink | https://www.hardsec.org |
| dbo:wikiPageID | 54213333 (xsd:integer) |
| dbo:wikiPageLength | 5748 (xsd:nonNegativeInteger) |
| dbo:wikiPageRevisionID | 1045723732 (xsd:integer) |
| dbo:wikiPageWikiLink | dbr:Power_analysis dbr:Electromagnetic_attack dbr:Electronic_system dbr:List_of_computer_hardware_manufacturers dbr:Defense_strategy_(computing) dbr:Integrated_circuit dbr:Proprietary_software dbr:Combinational_logic dbr:Comparison_of_open-source_operating_systems dbr:Computational_trust dbr:Computer dbr:Computer_security dbr:One-way_function dbr:Timing_attack dbr:Vulnerability_(computing) dbr:Free_and_open-source_software dbr:Function_(mathematics) dbr:Consumer_protection dbc:Cyberwarfare dbr:Strong_authentication dbr:Computer_compatibility dbr:Computer_hardware dbr:Hardware_Trojan dbr:Hardware_backdoor dbr:Hardware_security_module dbr:Physical_unclonable_function dbc:Product_design dbr:Trusted_Computing dbr:Access_control dbc:Computer_hardware dbr:Fingerprint_(computing) dbr:Backdoor_(computing) dbr:Acoustic_cryptanalysis dbc:Computer_security dbr:Secure_cryptoprocessor dbr:Automata_theory dbr:Field-programmable_gate_array dbr:Integrated_circuits dbr:Secure_multi-party_computation dbr:Turing_machine dbr:Side-channel_attack dbr:Supply_chain_security dbr:Server_(computing) dbr:Universal_Turing_machine dbr:Finite-state_machine dbr:Security_switch dbr:Turing_completeness dbr:Hardware_design dbr:Digital_keys |
| dbp:wikiPageUsesTemplate | dbt:Sectionlink dbt:Reflist |
| dcterms:subject | dbc:Cyberwarfare dbc:Product_design dbc:Computer_hardware dbc:Computer_security |
| rdfs:comment | 硬體安全(hardware security)是和密碼學有關的領域,和硬體設計、存取控制、安全多方计算、安全密鑰儲存、確認代碼真實性有關,並且確保產品零件的供應鏈也符合相關的要求。 硬件安全模块(HSM)是實體的計算裝置,監管及管理用在的數位簽章,並且提供安全加密協處理器。這些模組以往是用連接到电子计算机或服务器的外接卡或是外部裝置來進行。 有些供應者認為硬件安全和軟體安全的差異在於:硬件安全是用「非图灵机」邏輯(组合逻辑电路或有限状态机)來實現。有一種實現方式稱為hardsec,是用现场可编程逻辑门阵列(FPGA)來實現非图灵机的安全控制,也可以配合軟體的彈性,結合軟體及硬體的安全性。 是類似軟體後門的概念,是指在硬件上預留,可以有進階功能的介面。和這個概念有關的是(HT),是電路上惡意的修改,在有關積體電路的議題可能會提及此一概念。 物理不可複製函數(PUF)是物體實體,封裝在物理性的結構中,很容易評估,但很難預測結果。而且,實體無法複製函數要很容易製造,但在實務上要作到幾乎無法複製,就算是完全一樣的生產方式也會有不一樣的成品。這個類似是硬體上的單向函數。「物理不可複製函數」(PUF)的名稱可能會造成誤解,有些PUF可以複製,但大部份的PUF的雜訊很大,無法滿足數學函數的要求。現今的PUF多半會放在集成电路中,會用在有高度資訊安全要求的應用中。 (zh) Hardware security as a discipline originated out of cryptographic engineering and involves hardware design, access control, secure multi-party computation, secure key storage, ensuring code authenticity, measures to ensure that the supply chain that built the product is secure among other things. A hardware security module (HSM) is a physical computing device that safeguards and manages digital keys for strong authentication and provides cryptoprocessing. These modules traditionally come in the form of a plug-in card or an external device that attaches directly to a computer or network server. (en) |
| rdfs:label | Hardware security (en) 硬體安全 (zh) |
| owl:sameAs | wikidata:Hardware security dbpedia-fa:Hardware security dbpedia-mk:Hardware security dbpedia-zh:Hardware security https://global.dbpedia.org/id/2or2W |
| prov:wasDerivedFrom | wikipedia-en:Hardware_security?oldid=1045723732&ns=0 |
| foaf:isPrimaryTopicOf | wikipedia-en:Hardware_security |
| is dbo:academicDiscipline of | dbr:Mark_Tehranipoor |
| is dbo:knownFor of | dbr:Debdeep_Mukhopadhyay |
| is dbo:wikiPageRedirects of | dbr:Computer_security_hardware |
| is dbo:wikiPageWikiLink of | dbr:Prabhat_Mishra dbr:Wiener_index dbr:Debdeep_Mukhopadhyay dbr:Computer_security dbr:Computer_security_hardware dbr:Computer_compatibility dbr:Hardware_Trojan dbr:Hardware_backdoor dbr:Hardware_security_bug dbr:Key_management dbr:Trusted_computing_base dbr:Mark_Tehranipoor dbr:Trusted_Platform_Module dbr:Hyper-Wiener_index dbr:Field-programmable_gate_array dbr:Unified_threat_management |
| is dbp:field of | dbr:Mark_Tehranipoor |
| is foaf:primaryTopic of | wikipedia-en:Hardware_security |