wiki:SecureUpdates

Version 24 (modified by Vic Thomas, 13 years ago) (diff)

--

Project Number

1696

Project Title

Exploiting Insecurity to Secure Software Update Systems
a.k.a. SECUREUPDATES

Technical Contacts

PI: Justin Cappos justinc@cs.washington.edu
Geremy Condra gcondra@cs.washington.edu

Participating Organizations

Computer Science and Engineering
University of Washington
Box 352350 Seattle, WA 98195-2350

GPO Liaison System Engineer

Vic Thomas

Scope

This proposed effort will create a framework that secures the software update systems that operate on GENI. The work will define and implement a security layer that can operate over many different application-specific installation environments, thus providing secure update functions for diverse GENI nodes and clients. The proposal plans to leverage the VM and the redirection proxy from the Million Node GENI project to support multiple platforms. The effort provides secure key management support for software update system developers, allowing software updates to be signed, validated, and distributed securely.

Current Capabilities

Milestones

MilestoneDate(SECUREUPDATES: S2.a overview)?
MilestoneDate(SECUREUPDATES: S2.b client lib design)? (Click here for design document)
MilestoneDate(SECUREUPDATES: S2.c repo lib design)? (Click here for design document)
MilestoneDate(SECUREUPDATES: S2.d client lib demo)? Source code available at http://www.updateframework.com/wiki/Download
MilestoneDate(SECUREUPDATES: S2.e repo lib demo)? http://www.updateframework.com/wiki/Download
MilestoneDate(SECUREUPDATES: S2.f push demo)? See MilestonesS2f&gdeliverables.tar.gz
MilestoneDate(SECUREUPDATES: S2.g client lib example)? See MilestonesS2f&gdeliverables.tar.gz
MilestoneDate(SECUREUPDATES: S2.h client lib trust design)? See design docs: tuf-client-spec.pdf and tuf-server-spec.pdf
MilestoneDate(SECUREUPDATES: S2.i repo lib trust design)? See TUF Spec section of https://www.updateframework.com/.

MilestoneDate(SECUREUPDATES: S3.a Demonstration and outreach at GEC9)?
MilestoneDate(SECUREUPDATES: S3.b Demonstration and outreach at GEC10)?
MilestoneDate(SECUREUPDATES: S3.c Plan for integrating TUF into Stork)?
MilestoneDate(SECUREUPDATES: S3.d Demonstration and outreach at GEC11)?
MilestoneDate(SECUREUPDATES: S3.e Deliver software and documentation)?

Project Technical Documents

Main project website

Securing Software Updates in GENI (overview document)
Client library design
Repository library design

Source code (including client and repository libraries): http://www.updateframework.com/wiki/Download

Quarterly Status Reports

December 2009 report
March 2010 report
June 2010 report
March 2011 report

Spiral 2 Connectivity

Related Projects

Provisioning Service (Raven)

Attachments (9)

Download all attachments as: .zip