通过对可信计算及其主要功能“远端证明”的分析,提出“应用证明”的概念及原理,并说明支持应用证明所需的安全机制。分析现有主流操作系统所使用的保护结构和访问控制模型,说明应用证明在当前的主流操作系统上是无法实现的。通过对能力系统EROS 进行改进,使其充分支持应用证明,并提高系统的安全性及可信性。 关键词:可信计算;远端证明;应用证明;能力系统 Abstract: Through the analysis of the trusted computing and its main function remote attestation, the paper roposes the concept and principle of application attestation, and explains the security echanism that needs to upport application attestation. The paper analyses the protection frame and the access control model of the ainstream operating system, and points out that it is impossible to implement application attestation on the mainstream operating system. Through the modification of the capability system EROS, the modified EROS can ell support the application attestation and improve the system’s security and trusting degree. Keywords: trusted computing; remote attestation; application attestation; capability system 1