Research on Data Leak Protection Technology Based on Trusted Platform

ABSTRACT

In order to guard against the leakage of important data in the system, a new model of data protection is proposed in the paper, which is also targeted at the shortcomings in the existing data protection technology in the field of data leakage prevention. By taking advantage of TPM data protection technique as well as the combination of symmetric encryption and asymmetric encryption, a new data protection method that is based on Trusted Platform has been also established. Once the encrypted data and platform configuration value is sealed, as long as the system state value is subject to change, the encrypted data will never be revealed and thus the data safety will be preserved, whether it is data stealing or active leakage. According to the test results, this method of data protection will be of great use to prevent the active leakage through the network or mobile storage device.

Keywords:

Data leak Prevention (DLP), data seal, trusted computing, trusted platform module, platform configuration register(PCR).