【作者】 陈志峰；

【导师】 张申生；

【作者基本信息】 上海交通大学 ， 计算机应用技术， 2008， 硕士

【摘要】 数字签名的安全性必需建立在密钥安全的基础上,存储在计算机系统中的密钥容易被计算机病毒等恶意程序窃取并伪造数字签名破坏数字签名方案的有效性。本文在分析比较当前几种数字签名的软件和硬件的实现方案优劣势的基础上,结合对UEFI和基于UEFI的虚拟机的研究,提出了利用虚拟机技术提高数字签名的密钥安全性的方法。本文在分析说明基于UEFI的虚拟机的结构框架以及将其应用于数字签名的方案模型的同时,还给出了数字签名服务、应用系统库程序以及消息传输协议等关键技术的实现算法及数据结构。最后本文综合分析了基于虚拟机的数字签名技术的功能特点并给出了综合性能评价。更多还原

【Abstract】 The security of digital signature is largely based on the safety of cipher key. In normal cases, a cipher key is stored in the computer system, which can be easily obtained by vicious computer programs like computer virus etc. These vicious computer programs can then fabricate another digital signature, and wreck the validity of digital signature system. This paper studied UEFI and UEFI based virtual machine, and then proposed an approach to improve the safety of digital signature with the application of virtual machine technology. At the same time this paper also gives detailed illumination of data structures and Algorithms of several critical techniques like the digital signature service, application support programs and message transmission protocols. Finally this paper systematically analyzed the characteristics of digital signature based on an UEFI virtual machine, and provides performance evaluations.更多还原