DynaTrust

HexEffect, LLC will use its experience with both offensive and defensive computing technologies to develop a software-only root of trust (RoT) system called DynaTrust. The system will be deployable on commercial mobile devices running the Android operating system. The purpose of DynaTrust is to allow trusted execution and data storage on widely available low cost and legacy commercial devices.

DynaTrust will use precise timing and self-checksumming code to establish a dynamic RoT on a mobile device. HexEffect will employ unique rootkit-like techniques to help maintain the integrity of the RoT while it is active. This RoT will provide trusted execution and data access services. It will be deactivated when the user no longer requires access to protected resources. The anticipated usage model is similar to how VPNs are currently used.

A successful effort will result in a system that can be used to establish trust on most existing Android devices. DynaTrust will allow organizations to perform trusted operations on low cost and legacy devices rather than requiring the purchase of newer, costlier devices. This technology will also enable safer bring your own device (BYOD) practices in government and commercial organizations.

Our initial TRL is 2. DynaTrust will be built using known basic principles, but with some extensions and integrated in novel ways. By the end of Phase II we will be at TRL 6, having demonstrated our solution in a live environment using real devices.