摘要 |
A mobile wireless device operable to install code on a removable medium, in which the device is programmed to calculate and store a digest of this code into a persistent non-removable store inside the device. When the removable medium is plugged back, and when the code is invoked, the device recalculates a digest from the code it wants to load from the removable medium and compares it with the one stored inside the persistent non-removable store. If they do not match, the code has been tampered with and therefore cannot be trusted by the device. The digest is accessible only by components in the Trusted Computing Base so is itself secure. The digest may be a hash or other unique and representative value.
|