| | 1 | |
| | 2 | = Technical Status Report for secure software updates project post GEC13 = |
| | 3 | |
| | 4 | |
| | 5 | PI: Justin Cappos |
| | 6 | |
| | 7 | |
| | 8 | == Major accomplishments == |
| | 9 | |
| | 10 | Integration with PrimoGENI |
| | 11 | |
| | 12 | Demo integration with PlanetLab |
| | 13 | |
| | 14 | === Milestones achieved === |
| | 15 | |
| | 16 | N/A |
| | 17 | |
| | 18 | === Deliverables made === |
| | 19 | |
| | 20 | {{{ |
| | 21 | S4.c Demonstration and outreach at GEC13 |
| | 22 | * Demonstration of TUF integrated into an updater used by at least one GENI project identified in Milestone 2. |
| | 23 | * Demonstrate private update retrieval feature of TUF. |
| | 24 | * Find other GENI projects that could benefit from TUF. |
| | 25 | }}} |
| | 26 | (Completed at GEC 13) |
| | 27 | |
| | 28 | |
| | 29 | == Description of work performed during last quarter == |
| | 30 | |
| | 31 | We completed integration of TUF with distutils. We have integrated |
| | 32 | with Seattle's updater and PrimoGENI. We have a proof-of-concept |
| | 33 | integration with PlanetLab's boot CD. We have addressed usability |
| | 34 | problems. We have implemented a solution to the problem of |
| | 35 | disclosing a security vulnerability when retrieving an update. |
| | 36 | |
| | 37 | == Project participants == |
| | 38 | |
| | 39 | Justin Cappos (PI) |
| | 40 | Geremy Condra (Programmer) |
| | 41 | Monzur Muhammad (Programmer) |
| | 42 | |
| | 43 | |
| | 44 | == Publications (individual and organizational) == |
| | 45 | |
| | 46 | None this quarter |
| | 47 | |
| | 48 | |
| | 49 | == Outreach activities == |
| | 50 | |
| | 51 | We gave presentations at several undergraduate research nights on TUF. |
| | 52 | We presented a demo on TUF at GEC13. Students in an introductory |
| | 53 | security class at NYU Poly experimented with TUF and upPIR. |
| | 54 | |
| | 55 | == Collaborations == |
| | 56 | |
| | 57 | |
| | 58 | |
| | 59 | We integrated with distutils. We have integrated into the Seattle |
| | 60 | software updater and will be added in the next production release. |
| | 61 | |
| | 62 | We have integrated with PlanetLab's boot CD update mechanism and |
| | 63 | PrimoGENI. We have more work to do to get PlanetLab's integration |
| | 64 | into production. Our understanding is that TUF is used in production on |
| | 65 | PrimoGENI. |
| | 66 | |
| | 67 | We have explored collaboration with the rack solutions provided by |
| | 68 | Rick McGeer and Ilia Baldine. As was requested by the GPO, we will |
| | 69 | make this a point of emphasis in the next 4 months. |
| | 70 | |
| | 71 | |
| | 72 | == Other Contributions == |
| | 73 | |
| | 74 | Justin gave talks that described TUF (and other topics) at multiple |
| | 75 | venues. |
