Platform integrity verification system and information processing device

摘要

A platform integrity verification system capable of executing platform integrity verification by a trusted boot without causing a delay of system startup time. The platform integrity verification system has an information processing device and an integrity verification computer that is communicably connected to each other. The information processing device comprises an acquisition section acquires a unique value from each of a plurality of programs executed by the information processing device when the information processing device is shut down; and a storage section configured to store the unique value acquired by the acquisition section in a storage device. The integrity verification computer comprises a comparison section configured to acquire the unique value stored in the storage device through communication with the information processing device and compares the acquired unique value with a predetermined value held in advance for each program.

主权项

1. A platform integrity verification system having an information processing device and an integrity verification computer that are is communicably connected to each other, wherein
said information processing device comprises: an acquisition unit configured to perform acquisition processing including acquiring a plurality of unique values from a plurality of programs executed by said information processing device when said information processing device is shut down, each respective unique value of the plurality of unique values acquired from a respective program of the plurality of programs, wherein said information processing device is configured, after said acquisition unit finishes the acquisition processing, to report to said integrity verification computer that said information processing device is shut down; and a storage unit configured to store the plurality of unique values acquired by said acquisition unit in a storage device, and said integrity verification computer comprises a comparison unit configured to retrieve each respective unique value of the plurality of unique values stored in the storage device through communication with said information processing device and to compare the respective unique value with a respective predetermined value held in advance for the respective program from which the respective unique value was acquired by the acquisition unit.