SecureCore Software Architecture: Trusted Management Layer (TML) Kernel Extension Module Interface Specification
Abstract
A mobile computing device has more inherent risk than desktops or most other stationary computing devices. Such mobile devices are typically carried outside of a controlled physical environment, and they must communicate over an insecure medium. The risk is even greater if the data being stored, processed, and transmitted by the mobile device is classified. The purpose of the SecureCore research project is to investigate fundamental architectural features required for the trusted operation of mobile computing devices such as smart cards, embedded controllers, and hand-held computers. The goal is to provide secure processing and communication features for resource-constrained platforms, without compromise of performance, size, cost, or energy consumption. In this environment, the security must also be built-in, transparent, and flexible. This document describes the interfaces for kernel extension modules that may be incorporated into the Trusted Management Layer (TML), specifically the Least Privilege Separation Kernel (LPSK). The LPSK is composed of modules which are used as the building blocks of the kernel implementation. These modules are referred to as core kernel modules. Kernel extension modules are separate from the core LPSK modules, providing additional functionality. Included in this document are interfaces that the LPSK provides for the kernel extension modules to call, as well as interfaces the kernel extension modules present for the LPSK to call under certain circumstances.
Document Details
- Document Type
- Technical Report
- Publication Date
- Jan 01, 2008
- Accession Number
- ADA482317
Entities
People
- Cynthia E. Irvine
- David J. Shifflett
- Paul C. Clark
- Thuy D. Nguyen
- Timothy E. Levin
- Timothy M. Vidas
Organizations
- Naval Postgraduate School