Bear: An Open-Source Virtual Secure Coprocessor based on TCPA
R. A. Hettinga
rah at shipwright.com
Wed Sep 10 11:32:55 EDT 2003
<http://www.cs.dartmouth.edu/~sws/abstracts/msmw03.shtml>
Papers
www.cs.dartmouth.edu/~sws/abstracts/msmw03.shtml
Last modified: 08/27/03 11:56:52 AM
Rich MacDonald, Sean W. Smith, John Marchesini, Omen Wild.
Bear: An Open-Source Virtual Secure Coprocessor based on TCPA
Technical Report TR2003-471, Department of Computer Science, Dartmouth College.
August 2003.
Abstract
This paper reports on our ongoing project to use TCPA to transform a desktop Linux machine into a virtual secure coprocessor: more powerful but less secure than higher-end devices. We use TCPA hardware and modified boot loaders to protect fairly static components, such as a trusted kernel; we use an enforcer module---configured as Linux Security Module---to protected more dynamic system components; we use an encrypted loopback filesystem to protect highly dynamic components.
All our code is open source and available under GPL from http://enforcer.sourceforge.net/
Download
PDF
Code
Back to home page
Maintained by Sean Smith ,sws at cs.dartmouth.edu
--
-----------------
R. A. Hettinga <mailto: rah at ibuc.com>
The Internet Bearer Underwriting Corporation <http://www.ibuc.com/>
44 Farquhar Street, Boston, MA 02131 USA
"... however it may deserve respect for its usefulness and antiquity,
[predicting the end of the world] has not been found agreeable to
experience." -- Edward Gibbon, 'Decline and Fall of the Roman Empire'
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list