[[PageOutline]] == Project Number == 1696 == Project Title == Exploiting Insecurity to Secure Software Update Systems[[BR]] a.k.a. SECUREUPDATES === Technical Contacts === '''PI:''' Justin Cappos [mailto:jcappos@poly.edu][[BR]] === Participating Organizations === [http://www.poly.edu Computer Science and Engineering][[BR]] Polytechnic Institute of NYU[[BR]] MetroTech 6 Brooklyn NY 11201 === GPO Liaison System Engineer === [mailto:vthomas@geni.net Vic Thomas] == Scope == This proposed effort will create a framework that secures the software update systems that operate on GENI. The work will define and implement a security layer that can operate over many different application-specific installation environments, thus providing secure update functions for diverse GENI nodes and clients. The proposal plans to leverage the VM and the redirection proxy from the Million Node GENI project to support multiple platforms. The effort provides secure key management support for software update system developers, allowing software updates to be signed, validated, and distributed securely. === Current Capabilities === === Milestones === == Spiral 4 == * [[MilestoneDate(SECUREUPDATES: S4.a Demonstration and outreach at GEC12)]] * [[MilestoneDate(SECUREUPDATES: S4.b Identify GENI project(s) that are potential users of TUF)]] * [[MilestoneDate(SECUREUPDATES: S4.c Demonstration and outreach at GEC13)]] * [[MilestoneDate(SECUREUPDATES: S4.d Demonstration and outreach at GEC14)]] * [[MilestoneDate(SECUREUPDATES: S4.e Deliver software and documentation)]] == Project Technical Documents == [http://www.updateframework.com/ Main project website] [[BR]] [attachment:Secure_Updates_in_GENI.pdf Securing Software Updates in GENI] (overview document)[[BR]] [attachment:Client_Library_Design_Document.pdf Client library design] [[BR]] [attachment:Repository_Library_Design_Document.pdf Repository library design][[BR]] Design documents: [attachment:tuf-client-spec.pdf Client Specification] and [attachment:tuf-server-spec.pdf Server Specification] [[BR]] [[BR]] Source code (including client and repository libraries): http://www.updateframework.com/wiki/Download === Quarterly Status Reports === [wiki:SecureUpdates-4Q09-status December 2009 report][[BR]] [wiki:SecureUpdates-Qmar10-status March 2010 report] [[BR]] [wiki:SecureUpdates-2Q10-status June 2010 report][[BR]] [wiki:SecureUpdates-Nov-2011-status November 2011 report] [[BR]] [wiki:SecureUpdates-March2011-status March 2011 report] === Spiral 2 Connectivity === === Related Projects === [wiki:"ProvisioningService" Provisioning Service (Raven)][[BR]]