《ISO IEC 27070-2021.docx》由会员分享,可在线阅读,更多相关《ISO IEC 27070-2021.docx(16页珍藏版)》请在第壹文秘上搜索。
1、INTERNATIONA1.STANDARDISO/IEC27070editionF1.rst202M2Informationtechno1.ogySecuritytechniquesRequirementsforestab1.ishingvirtua1.izedrootsoftrustTechno1.ogiesdeinfrmationTechniquesdeSRUriWExigencesre1.ativesaVitabUssementderacinesdeconfiancevirtua1.isesReferencenumberISO/IEC27070:2021(E)COPYRIGHTPROT
2、ECTEDDOCUMENTISO/1EC2021IUirhM*hedbdi1.iUedotherwiseupdhi.o啪InyM1.tta0DmkfifiU81.andonnet8CH-1214Vernier,GenevaPhone:M1.227490111觥曲ite:图洲跳触OQrgPub1.ishedinSwitzer1.andISO/IEC2021-A1.1.tightsreservedContentsForewordivIntroductionv2 Scope13 Normativereferences14 Termsanddefinitions15 SymbOiSandabbrevi
3、atedterms2Functiona1.view35.1 Overview35.2 Hardware1.ayercomponents45.2.2 Genetidna1.requirementsQfkeycoraponents45.2.3 Securityrequirementsofkeycomponents45.3 VMM1.ayercomponents5:i耗做fi&ha1.requirementske,E8fr悦nents55.4 IayerCorPonentS75.5 C1.oudOS1.ayercomponents86.S.fiRPf111.requirementsofkeycomp
4、onentsA6S.5.3Securityrequirementsofkeycomponents8Activityview9,)1m.一)6.2Transitivetrust96.2.2 VEmsit1.vetrustinhost106.2.3 *ianstvetrustinM-.106.2.4 TransitivetrustinVM1()酎1.toWW三J三ent-_116.5 Dataprotection126.51Genera1.一.一12时4Databig-.一.一.-.-126.6 xrTMmigration14AnnexA(informative)Re1.ationshipbetw
5、eenactivityandfunctiona1.views16Bib1.iography.一.一.一.18ForewordISO(theInternationa1.OrganizationforStandardization)andIEC(theInternationa1.E1.ectrotechnica1.(inb(S5io6)SOrnIHGspectHipMisyB耐u6vHFvM0tMditand29ionS出口出Mr由Budiughtechniojbcommitteesestab1.ishedbytherespectiveorganizationtodea1.withparticu1
6、.arfie1.dsoftechnica1.activity.ISOandIECmitteesco1.1.aborateinfie1.dsofmutua1.interestOtherinternationa1.organizations,governmenta1.andnon-governmenta1.rin1.iaisonwithISOandIEC,a1.sotakepartintheTheproceduresusedtodeve1.opthisdocumentandthoseintendedforitsfurthermaintenanceAi1.cddc抑IbCdthe1.nd睢rcnt1
7、.S(W招由也帼rtsK曲如M1.Marjg惇的脚也Jid空wff酶旬I1.Wn%w4h:WNhIhee0三1.rt1.es毛fIheISO/IECDirectives.Part2(seewww.iso.org/dircctivesorwww.iec.ch/members.experts/refdocs).MMfigrigWMwn怕而花6网刺i1.1.Ma飒戏?册率湎MC用阳加田呼烟曲y唧A1凰和Subjectrights.Detai1.sofanypatentrightsidentifiedduringthedeve1.opmentof41.M1.eHiMVwU1.4eintheIntrod
8、uctionand/orontheISO1.istofpatentdec1.arationsreceived(seewww.iso.org/patents)ortheIEC1.istofpatentdec1.arationsreceived(seepatents.iec.ch).Anytradenameusedinthisdocumentisinformationgivenfortheconvenienceofusersanddoesnotconstituteanendorsement.fcpJwsionsexjIkInWrtbnOKotheCY*w11。域nt,standMdHHeiniwn
9、inona峻tspedft加MnCetothWoWd丁Fad。g阴ao-(WTo)princip1.esinTMbng1.Baw沁竹(丁B不力seewww.iso.org/iso/fbresvord.h1.ni1.Inthe1EC,secwww.iec.ch/understanding-standards.j族。例M腺里SC编妞肿群梆隰CUrj夕或M1.wfm阳(SO/I&肪小econ./brmaontechno1.ogy,Anyfeedbackorquestionsonthisdocumentshou1.dbedirectedtotheusersnationa1.standardsbodie
10、scanbefoundatwww.Mc.cTg/memher&htm1.andISO/IEC2021-A11rightsreservedIntroductionTrustedcomputingisakindofsecuritytechno1.ogybasedonhardwaretrustedmodu1.es,whichaimsto980xpected.Thetrustedcomputingtechno1.ogyhasbeendeve1.opingTheemergenceofc1.oudcomputingprovidesanewapp1.icationscenariofortrustedcomp
11、utinganddestinationphysica1.machines(inc1.uding1.hcirVMMsoftware)andcomponentsinvo1.vedinthe璃阳脚那CeSSco邮拙则Ca“泡脚UUn&isen*8H眼柚S用圜用晒僚阳阚姻秒短如mi1.edToaddressthisissue,VirtuanzedRoTsareused.Usingvirtua1.izationtechnofogytocreatemu1.tip1.evirtua1.izedRoTsonasing1.ephysica1.p1.atform,providingavirtua1.izedRoT
12、foreachVM,combinedwithngtg6wm腺ntsuppXA%W酬M1.gK除Fduremrati0H(,/物1.1.跖rt三i唱的防H詈Nf1.1U1.tip1.esteps,a11(fanysecurityprob1.eminanystepdiminishesthetrustworthinessofvirtua1.izedRoTs,resu1.tinginaninabi1.itytoestab1.ishtrustusingthevirtua1.izedRoTs.Thegoa1.modu1.es.ofthedocumentistoprovideaunifiedapproach
13、tovirtua1.izeRoTsbasedonhardwaretrustedInformationtechno1.ogySecuritytechniques一Requirementsforestab1.ishingvirtua1.izedrootsoftrust1 ScopeThisdocumentspecifiesrequirementsforestab1.ishingvirtua1.izedrootsoftrust.2 NormativereferencesTherearenonormativereferencesinthisdocument.3 TermsanddefinitionsF
14、orthepurposesofthisdocument,thefo1.1.owingtermsanddefinitionsapp1.y.ISOandIECmaintaintermino1.ogydatabasesforuseinstandardizationatthefo1.1.owingaddresses:ISOOn1.inebrowsingp1.atform:avai1.ab1.eathttps:/www.iso.org/obp371IECE1.ectropedia:avai1.ab1.eabUps/WWWTe1.eFg/attestationkeyAKparticu1.artypeoftrustedmodu1.e(3.7)signingkeythathasarestrictiononitsuse,inorde
