A Dynamic Trustworthiness Attestation Method based on Dual Kernel Architecture

The existing trustworthiness attestation methods are not only difficult to be applied to the embedded system because they are mainly based on virtual machine technology, but have some problems such shat evidence is not obtained in time, protecting the privacy need trusted third party and trust measurement efficiency is low. In this paper, an embedded system dynamic trustworthiness attestation method based on dual-kernel (super kernel and normal kernel) operating system architecture is proposed. Super kernel is non-changeable, and it verifies the integrity of the critical data structures and kernel file in normal kernel. Super kernel can serve as a trusted third party which can dynamically verify whether the code segment changes in runtime. A system implementation is given in this paper, and the experimental data show that the behavior of the system can dynamically verify the behavior of program whether meets embedded trusted application demand or not.