Bear: An Open-Source Virtual Secure Coprocessor based on TCPA

Dartmouth Technical Report TR2003-471

	Rich MacDonald
	Sean W. Smith
	John Marchesini
	Omen Wild

Date: August 2003

URL (compressed postscript): <http://www.cs.dartmouth.edu/reports/TR2003-471.ps.Z> (380KB)

URL (PDF): <http://www.cs.dartmouth.edu/reports/TR2003-471.pdf> (108KB)

Abstract:
 This paper reports on our ongoing project to use TCPA to transform a
 desktop Linux machine into a virtual secure coprocessor: more powerful
 but less secure than higher-end devices.  We use TCPA hardware and
 modified boot loaders to protect fairly static components, such as a
 trusted kernel; we use an enforcer module---configured as Linux
 Security Module---to protected more dynamic system components; we use
 an encrypted loopback filesystem to protect highly dynamic components.
   All our code is open source and available under GPL from
 http://enforcer.sourceforge.net/

Note:
 Superceded by TR2003-476.