![]() |
|||
LinuxConf Europe 2007 Conference and Tutorials ![]() Sunday 2nd - Wednesday 5th September University Arms Hotel, Cambridge, England |
|
Hadi Nahari - MontaVista Software, Inc.Trusted Secure Embedded LinuxWith the ever-increasing presence of Linux implementations in embedded devices (mobile handsets, set-top boxes, headless computing devices, medical equipments, etc.) there is a strong demand for defining the security requirements, augmenting, enhancing, and hardening the operating environment. Currently an estimated 70\% of new semiconductor devices are Linux-enabled; such a high growth is accompanied by inevitable security risks, hence the requirement for hardware-based trusted and secure computing environment, enhanced with MAC (Mandatory Access Control) mechanisms for such devices in order to provide appropriate levels of protection. Due to stringent security requirements for resource-constrained embedded devices, establishing the trust-chain on hardware root of trust, and deploying MAC mechanisms to balance performance and control are particularly challenging tasks. This paper presents the status of MontaVista Software efforts to implement such solution based on ARM cores that provide isolation for the computing environments, as well as SELinux (Security Enhanced Linux) to provide MAC for embedded devices. We will focus on practical aspects of hardware integration as well as porting SELinux to resource-constrained devices. Submitted paperand Paper (ZIP) . |
G O L D S P O N S O R | S I L V E R S P O N S O R |
---|---|
![]() Intel |
![]() |
S P O N S O R S | ||||
---|---|---|---|---|
![]() Bytemark |
![]() Sun |
![]() Novell |
![]() The Positive Internet Company |
![]() collabora |
M E D I A S P O N S O R S | ||
---|---|---|
![]() Linux User & Developer |
![]() Linux Magazine |
![]() The USENIX Association |
For more information please contact UKUUG | Problems? e-mail webmaster |
© Copyright 2007 UKUUG Ltd |