SecureCore Software Architecture: Trusted Management Layer (TML) Kernel Extension Module Interface Specification
Technical rept. Sep 2006-Jan 2008
NAVAL POSTGRADUATE SCHOOL MONTEREY CA CENTER FOR INFORMATION SYSTEMS SECURITY STUDIES AND RESEARCH
Pagination or Media Count:
A mobile computing device has more inherent risk than desktops or most other stationary computing devices. Such mobile devices are typically carried outside of a controlled physical environment, and they must communicate over an insecure medium. The risk is even greater if the data being stored, processed, and transmitted by the mobile device is classified. The purpose of the SecureCore research project is to investigate fundamental architectural features required for the trusted operation of mobile computing devices such as smart cards, embedded controllers, and hand-held computers. The goal is to provide secure processing and communication features for resource-constrained platforms, without compromise of performance, size, cost, or energy consumption. In this environment, the security must also be built-in, transparent, and flexible. This document describes the interfaces for kernel extension modules that may be incorporated into the Trusted Management Layer TML, specifically the Least Privilege Separation Kernel LPSK. The LPSK is composed of modules which are used as the building blocks of the kernel implementation. These modules are referred to as core kernel modules. Kernel extension modules are separate from the core LPSK modules, providing additional functionality. Included in this document are interfaces that the LPSK provides for the kernel extension modules to call, as well as interfaces the kernel extension modules present for the LPSK to call under certain circumstances.
- Information Science
- Computer Programming and Software
- Radio Communications