Secure launcher for NLSR
There are problems where different NDN programs need to communicate, which has the obstacles of how to exchange keys. Also, due to the secure nature of these programs, the integrity of any distributed binaries should be verified, as well as the program configuration.
- NLSR would be runnable through an external, launcher program.
- This external launcher would use a pre-configured certificate to generate keys, which NLSR would use.
- This external launcher would be able to verify that any distributed binaries have not been tampered with.
- This external launcher would be able to restore an NLSR configuration to a sane default.
- This external launcher would be capable of supporting other programs, to provide a "secure launch platform" for the NDN community of programs.
Updated by Junxiao Shi about 4 years ago
How do you make sure the launcher itself is secure? You'll need a secure operating system.
How do you make sure the OS is secure? You'll need a secure bootloader.
How do you make sure the bootloader is secure? You'll need a TPM chip.
Is there a TPM chip on the software router? Probably not.
Without a secure bootloader, the OS cannot be verified to be secure.
Without a secure OS, the launcher cannot be verified to be secure.
Without a verified secure launcher, any verification onto NLSR and other NDN applications cannot be trusted.