Project

General

Profile

Feature #4192

Secure launcher for NLSR

Added by Nicholas Gordon about 4 years ago. Updated 9 months ago.

Status:
New
Priority:
Normal
Assignee:
-
Target version:
Start date:
Due date:
% Done:

0%

Estimated time:

Description

There are problems where different NDN programs need to communicate, which has the obstacles of how to exchange keys. Also, due to the secure nature of these programs, the integrity of any distributed binaries should be verified, as well as the program configuration.

  • NLSR would be runnable through an external, launcher program.
  • This external launcher would use a pre-configured certificate to generate keys, which NLSR would use.
  • This external launcher would be able to verify that any distributed binaries have not been tampered with.
  • This external launcher would be able to restore an NLSR configuration to a sane default.
  • This external launcher would be capable of supporting other programs, to provide a "secure launch platform" for the NDN community of programs.

Related issues

Has duplicate NLSR - Feature #3628: External LauncherNew05/25/2016

Actions
#1

Updated by Junxiao Shi about 4 years ago

How do you make sure the launcher itself is secure? You'll need a secure operating system.
How do you make sure the OS is secure? You'll need a secure bootloader.
How do you make sure the bootloader is secure? You'll need a TPM chip.
Is there a TPM chip on the software router? Probably not.
Without a secure bootloader, the OS cannot be verified to be secure.
Without a secure OS, the launcher cannot be verified to be secure.
Without a verified secure launcher, any verification onto NLSR and other NDN applications cannot be trusted.

#2

Updated by Nicholas Gordon over 3 years ago

#3

Updated by Saurab Dulal 9 months ago

  • Target version changed from v0.6.0 to 0.7.0

Also available in: Atom PDF