中文摘要：

目前针对存储系统的攻击行为层出不穷，已出现多种存储器保护机制，但其大多是在处理器中加入计算部件，需较大空间存储校验数据，这不但增加了处理器负担，存储开销也很大。针对此问题进行了研究，依据协同认证的思想，提出一种附加硬件的内存完整性保护方法MIPIC，其关键是在内存中加入一种具有计算功能的硬件部件，由处理器与该部件协同完成内存数据完整性校验。将MIPIC与CHTree比较，从存储增益等角度进行了性能分析，从认证方案性能等方面进行了实验模拟。分析和实验证明，MIPIC有更低的计算开销和存储开销。

英文摘要：

Recently, the attacks focus on computer storage system are emerging everywhere. Many memory protection mecha- nisms have been proposed, but most of them are joined calculating unit in the processor and need store verification data. These not only increase the computation burden of the processor, but also increase storage overhead. Begin to study for this problem, based on the idea of collaborative certification, this paper proposed a memory integrity protection method of append hardware called MIPIC. The key of the MIPIC was joining a hardware unit to the memory with calculating functions, thus the processor was collaborative with the unit to finish memory data verification. The MIPIC compared with the CHTree, performance analysis was made from the perspective of storage gain, etc. Simulations and experimental simulation were finished from the perspective of verification scheme performance, etc. The performance analysis and experiment show that the MIPIC has lower computation- al overhead and storage overhead.