SecureCore Software Architecture: Trusted Management Layer (TML) Kernel Extension Module Integration Guide
Abstract
A mobile computing device has more inherent risk than desktops or most other stationary computing devices. Such mobile devices are typically carried outside of a controlled physical environment, and they must communicate over an insecure medium. The risk is even greater if the data being stored, processed, and transmitted by the mobile device is classified. The purpose of the SecureCore research project is to investigate fundamental architectural features required for the trusted operation of mobile computing devices such as smart cards, embedded controllers, and hand-held computers. The goal is to provide secure processing and communication features for resource-constrained platforms, without compromise of performance, size, cost, or energy consumption. In this environment, the security must also be built-in, transparent, and flexible. This document describes the requirements for building kernel extension modules that may be incorporated into the Trusted Management Layer (TML), specifically the Least Privilege Separation Kernel (LPSK). The LPSK is composed of modules which are used as the building blocks of the kernel implementation. These modules are referred to as core kernel modules. Kernel extension modules are separate from the core LPSK modules, providing additional functionality. Integration of extension modules with the LPSK is described, including coding techniques, and compile and link directions.
Document Details
- Document Type
- Technical Report
- Publication Date
- Dec 01, 2007
- Accession Number
- ADA482318
Entities
People
- Cynthia E. Irvine
- David J. Shifflett
- Paul C. Clark
- Thuy D. Nguyen
- Timothy E. Levin
- Timothy M. Vidas
Organizations
- Naval Postgraduate School