文档
我要评分
获取效率
正确性
完整性
易理解
提交关闭

Remote Attestation of TAs

Case No.

2.6.1

Test Objective

Verify the remote attestation function of a TA in the secure OS.

Test Networking

See Test Networking.

Prerequisites
  1. The TrustZone kit has been burnt into the server and the TrustZone license has been activated.
  2. The REE patch has been loaded to the server. The CA and TA can be loaded and can communicate with each other properly.
  3. The baseline hash value of the TA to be measured has been preset in the Kunpeng security library.

Test Procedure
  1. Log in to the REE OS and load the TrustZone REE patch tzdriver. (See Expected Result 1.)

    insmod tzdriver

    /usr/bin/teecd &

  2. Run the TA that you want to measure.
  3. Use the Kunpeng security library to initiate an attestation request for the target TA. (See Expected Result 2.)
  4. Stop the TA and re-initiate an attestation request. (See Expected Result 3.)

Expected Result
  1. The REE patch is loaded and no error information is displayed.
  2. The TA attestation report is obtained, the TA attestation report is verified, and the measurement value in the report is the same as the baseline measurement value.
  3. The TA attestation report fails to be obtained because the TA is not running.

Test Result

   

Remarks

Ask the Huawei R&D to provide the TA and CA source code and binary files for the test.