BIB-VERSION:: CS-TR-v2.0
ID:: ncstrl.dartmouthcs//TR2003-471
ENTRY:: August 14, 2003
ORGANIZATION:: Dartmouth College, Computer Science
TITLE:: Bear: An Open-Source Virtual Secure Coprocessor based on TCPA
TYPE:: Technical Report (paper)
REVISION:: 1
AUTHOR:: MacDonald, Rich
AUTHOR:: Smith, Sean W.
AUTHOR:: Marchesini, John
AUTHOR:: Wild, Omen
DATE:: August 2003
RETRIEVAL:: For a paper copy, email <reports@cs.dartmouth.edu>
RETRIEVAL:: For a paper copy, write to
       Technical Report Librarian
       Department of Computer Science
       Dartmouth College
       6211 Sudikoff Laboratory
       Hanover, NH 03755-3510
       USA
RETRIEVAL:: Compressed Postscript at http://www.cs.dartmouth.edu/reports/TR2003-471.ps.Z
RETRIEVAL:: PDF at http://www.cs.dartmouth.edu/reports/TR2003-471.pdf
ABSTRACT:: 
This paper reports on our ongoing project to use TCPA to transform a
desktop Linux machine into a virtual secure coprocessor: more powerful
but less secure than higher-end devices.  We use TCPA hardware and
modified boot loaders to protect fairly static components, such as a
trusted kernel; we use an enforcer module---configured as Linux
Security Module---to protected more dynamic system components; we use
an encrypted loopback filesystem to protect highly dynamic components.
  All our code is open source and available under GPL from
http://enforcer.sourceforge.net/
NOTE::
Superceded by TR2003-476.
END:: ncstrl.dartmouthcs//TR2003-471