Helix Project Testbed - Towards the Self-Regenerative Incorruptible Enterprise

Chong, Frederic

Helix Project Testbed - Towards the Self-Regenerative Incorruptible Enterprise

Active / Technical Report | Accession Number: ADA566363 |

Open PDF

Abstract:

Information flow is an important security property that must be incorporated from the ground up, including at hardware design time, to provide a formal basis for a systems root of trust. We incorporate insights and techniques from designing information-flow secure programming languages to provide a new perspective on designing secure hardware. An important result of our DURIP is a new hardware description language, Caisson, that combines domain-specific abstractions common to hardware design with insights from type-based techniques used in secure programming languages. The proper combination of these elements allows for an expressive, provably-secure HDL that operates at a familiar level of abstraction to the target audience of the language, hardware architects. Additional work in this DURIP was to construct a minimal but configurable secure architectural skeleton. This skeleton couples a critical slice of the low level hardware implementation with a microkernel in a way that allows information flow properties of the entire construction to be statically verified all the way down to its gate-level implementation.

Author(s):

Chong, Frederic

Author Organization(s):

CALIFORNIA UNIV SANTA BARBARA

Descriptive Note:

Final rept. 13-14 Sep 2011

Supplementary Note:

The original document contains color images. DOI: 10.21236/ADA566363

Pagination:

0007

Security Markings

DOCUMENT & CONTEXTUAL SUMMARY

Distribution:

Approved For Public Release

Distribution Statement:

Approved For Public Release; Distribution Is Unlimited.

RECORD

Collection: TR

Identifying Numbers

Report Number(s):

AFRL-OSR-VA-TR-2012-0786

Contract/Grant Number(s):

FA9550-10-1-0292

Monitor Series:

TR-2012-0786, AFOSR/VA

Subject Terms

Joint Capability Areas:

JCA_8_Building Partnerships; JCA_6_Net Centric; JCA_8.1_Communicate; JCA_6.4.1_Secure Information Exchange; JCA_6.4_Information Assurance; JCA_8.1.1_Inform Domestic and Foreign Audiences; JCA_5_Command and Control; JCA_6.1.3_Switching and Routing; JCA_6.2.3_Core Enterprise Services; JCA_5.3_Planning; JCA_6.1_Information Transport; JCA_8.1.2_Persuade Partner Audiences; JCA_8.1.3_Influence Adversary and Competitor Audiences

Modernization Areas:

Microelectronics

Communities of Interest:

Energy and Power Technologies

Descriptor(s):

*CENTRAL PROCESSING UNITS, *COMPUTER SECURITY, POLICIES, PROGRAMMING LANGUAGES

Field(s)/Group(s):

Computer Hardware, Computer Systems Management and Standards

Keyword(s):

HARDWARE DESCRIPTION LANGUAGE, INFORMATION FLOW TRACKING, SECURE HARDWARE, SECURITY POLICIES

Report Date:

2011 Sep 14

Creation Date:

2012 Dec 03