Trusted computing base (original) (raw)
可信计算基(英語:Trusted computing base, TCB)是指为实现计算机系统安全保护的所有安全保护机制的集合,机制可以硬件、固件和软件的形式出现。一旦可信计算机基的某个构件出现程序错误或者安全隐患,就对整个系统的安全造成危害。 与之相反,如果除可信计算基之外的系统的其他部分出现问题,也只是泄漏了系统安全策略赋予它们的相关权限而已,这些权限一般都是比较低的。 精心设计和实现的系统可信计算基对系统整体安全至关重要。现代操作系统努力降低TCB的大小,使得通过手工或电脑辅助软件审计()或形式化验证的方法对其代码库彻底的检查成为可能。
| Property | Value |
|---|---|
| dbo:abstract | Una Base de computador confiable, también conocido por las siglas TCB (del inglés Trusted Computer Base), es un conjunto de elementos hardware, firmware y software que permiten a un sistema informático implementar los requisitos de seguridad establecidos. Cualquier cosa fuera del TCB puede ser malicioso. En ordenadores de propósito general la TCB suele estar formada por la mayoría de los elementos hardware del sistema (excepto los dispositivos de E/S) y una parte del núcleo del sistema operativo. Entre las funciones del sistema operativo que se deben incluir dentro de la TCB se encuentran las relativas a creación de procesos, cambio de contexto, gestión de memoria y parte de la gestión de la E/S y del sistema de archivos. Siempre se quiere que la TCB sea lo más pequeña posible de forma que nos podamos centrar en asegurar la seguridad de esa pequeña parte y que la seguridad del resto del sistema se apoye en ella. (es) The trusted computing base (TCB) of a computer system is the set of all hardware, firmware, and/or software components that are critical to its security, in the sense that bugs or vulnerabilities occurring inside the TCB might jeopardize the security properties of the entire system. By contrast, parts of a computer system that lie outside the TCB must not be able to misbehave in a way that would leak any more privileges than are granted to them in accordance to the system's security policy. The careful design and implementation of a system's trusted computing base is paramount to its overall security. Modern operating systems strive to reduce the size of the TCB so that an exhaustive examination of its code base (by means of manual or computer-assisted software audit or program verification) becomes feasible. (en) 可信计算基(英語:Trusted computing base, TCB)是指为实现计算机系统安全保护的所有安全保护机制的集合,机制可以硬件、固件和软件的形式出现。一旦可信计算机基的某个构件出现程序错误或者安全隐患,就对整个系统的安全造成危害。 与之相反,如果除可信计算基之外的系统的其他部分出现问题,也只是泄漏了系统安全策略赋予它们的相关权限而已,这些权限一般都是比较低的。 精心设计和实现的系统可信计算基对系统整体安全至关重要。现代操作系统努力降低TCB的大小,使得通过手工或电脑辅助软件审计()或形式化验证的方法对其代码库彻底的检查成为可能。 (zh) |
| dbo:wikiPageExternalLink | http://ssrg.nicta.com.au/projects/seL4/ |
| dbo:wikiPageID | 41826 (xsd:integer) |
| dbo:wikiPageLength | 12720 (xsd:nonNegativeInteger) |
| dbo:wikiPageRevisionID | 1116356882 (xsd:integer) |
| dbo:wikiPageWikiLink | dbr:Monolithic_kernel dbr:Read-only_memory dbr:David_J._Farber dbr:E_(programming_language) dbr:Computer_security dbr:Computer_system dbr:Memory_management dbr:Vulnerability_(computing) dbr:NICTA dbr:Common_Criteria dbr:Computer_hardware dbr:Email dbr:Hardware_security dbr:Password dbr:Security_policy dbr:Setuid dbr:Microkernel dbr:Butler_Lampson dbr:Web_server dbr:Access_control dbr:Expected_value dbr:John_Rushby dbr:Machine_code dbr:Trusted_Computer_System_Evaluation_Criteria dbr:Process_(computing) dbr:Harvard_architecture dbr:Java_(programming_language) dbc:Computer_security_procedures dbr:Black_box dbr:Supervisor_mode dbr:Trusted_system dbr:Buffer_overflow dbr:Open_Kernel_Labs dbr:Operating_system dbr:CPU dbr:Software_bug dbr:Memory_management_unit dbr:Software dbr:Software_audit_review dbr:Software_verification dbr:Von_Neumann_architecture dbr:Exploit_(computer_security) dbr:Programming_language dbr:Firmware dbr:Multi-user dbr:Trust_anchor dbr:Program_verification dbr:L4_microkernel dbr:UNIX dbr:Operating_system_kernel dbr:Daemon_(computer_software) dbr:AIX_operating_system dbr:Privilege_(computer_science) dbr:Security_breach dbr:Network_server |
| dbp:wikiPageUsesTemplate | dbt:As_of dbt:Distinguish dbt:Reflist dbt:Short_description dbt:Textbook dbt:Citation_needed_lead |
| dct:subject | dbc:Computer_security_procedures |
| gold:hypernym | dbr:Set |
| rdf:type | owl:Thing yago:WikicatComputerSecurityProcedures yago:Abstraction100002137 yago:Act100030358 yago:Activity100407535 yago:Event100029378 yago:Procedure101023820 yago:PsychologicalFeature100023100 yago:YagoPermanentlyLocatedEntity |
| rdfs:comment | 可信计算基(英語:Trusted computing base, TCB)是指为实现计算机系统安全保护的所有安全保护机制的集合,机制可以硬件、固件和软件的形式出现。一旦可信计算机基的某个构件出现程序错误或者安全隐患,就对整个系统的安全造成危害。 与之相反,如果除可信计算基之外的系统的其他部分出现问题,也只是泄漏了系统安全策略赋予它们的相关权限而已,这些权限一般都是比较低的。 精心设计和实现的系统可信计算基对系统整体安全至关重要。现代操作系统努力降低TCB的大小,使得通过手工或电脑辅助软件审计()或形式化验证的方法对其代码库彻底的检查成为可能。 (zh) Una Base de computador confiable, también conocido por las siglas TCB (del inglés Trusted Computer Base), es un conjunto de elementos hardware, firmware y software que permiten a un sistema informático implementar los requisitos de seguridad establecidos. Cualquier cosa fuera del TCB puede ser malicioso. Siempre se quiere que la TCB sea lo más pequeña posible de forma que nos podamos centrar en asegurar la seguridad de esa pequeña parte y que la seguridad del resto del sistema se apoye en ella. (es) The trusted computing base (TCB) of a computer system is the set of all hardware, firmware, and/or software components that are critical to its security, in the sense that bugs or vulnerabilities occurring inside the TCB might jeopardize the security properties of the entire system. By contrast, parts of a computer system that lie outside the TCB must not be able to misbehave in a way that would leak any more privileges than are granted to them in accordance to the system's security policy. (en) |
| rdfs:label | Base de computador confiable (es) Trusted computing base (en) 可信计算基 (zh) |
| owl:differentFrom | dbr:Trusted_Computing |
| owl:sameAs | freebase:Trusted computing base yago-res:Trusted computing base wikidata:Trusted computing base dbpedia-az:Trusted computing base dbpedia-es:Trusted computing base dbpedia-fi:Trusted computing base dbpedia-zh:Trusted computing base https://global.dbpedia.org/id/4jpi2 |
| prov:wasDerivedFrom | wikipedia-en:Trusted_computing_base?oldid=1116356882&ns=0 |
| foaf:isPrimaryTopicOf | wikipedia-en:Trusted_computing_base |
| is dbo:wikiPageDisambiguates of | dbr:TCB |
| is dbo:wikiPageRedirects of | dbr:Trusted_Computing_Base dbr:Trusted_base dbr:Trusted_computer_system |
| is dbo:wikiPageWikiLink of | dbr:Principle_of_least_privilege dbr:Verve_(operating_system) dbr:Embedded_hypervisor dbr:Genode dbr:Minix_3 dbr:Cliff_Wang dbr:Computer_engineering_compendium dbr:Embedded_system dbr:Kernel_(operating_system) dbr:TCB dbr:Trusted_third_party dbr:Microkernel dbr:Logic_for_Computable_Functions dbr:JX_(operating_system) dbr:L4_microkernel_family dbr:Trusted_system dbr:Microsoft_Security_Development_Lifecycle dbr:Server-based_signatures dbr:Security_kernel dbr:Trusted_Computing_Base dbr:Trusted_base dbr:Trusted_computer_system |
| is owl:differentFrom of | dbr:Trusted_Computing |
| is foaf:primaryTopic of | wikipedia-en:Trusted_computing_base |