Trusted Terminal Model Based on Process Protection
一个基于进程保护的可信终端模型

Aimed at the problem that the computer terminal is the source of the safe risk in the network system, this paper proposed a new reliable terminal model based on non-interference theory. It asserts the system's trust by the protection of static and dynamic process and non-inference among processes. The main function of static process protection is to protect the integrity of the process's code and the auxiliary file. The main function of dynamic process protection is to prevent the related data from being tampered. The function of non-inference among process is to judge the legitimacy of process alternation. The theoretical security analysis shows that the credibility of this model equals the non-interferonce model based on the trusted root. However, this model not only overcomes the trusted transfer function's irrationality of the non-interference trusted model based on trusted root, but also externalizes system static and action. Then it is more intuitive, concrete, easier to understand and in line with the actual terminal system.