A linux kernel cryptographic framework: decoupling cryptographic keys from applications.
SAC 2012: ACM Symposium on Applied Computing Trento Italy March, 2012(2012)
摘要
This paper describes a cryptographic service framework for the Linux kernel. The framework enables user-space applications to perform operations with cryptographic keys, while at the same time ensuring that applications cannot directly access or extract the keys from storage. The framework makes use of the higher privilege levels of the operating system in order to provide this isolation. The paper discusses the relevant security requirements and expectations, and presents the design of the framework. A comparison with alternative designs is also provided.
更多查看译文
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络