Remote Attestation and Distributed Trust in Networks (RADTiN)
Small Business Information
Suite 400, 1001 Broad Street, Utica, NY, -
AbstractABSTRACT: Warfighters need to be able to trust the systems on which their lives depend. Cases include an individual human trusting an individual computer, an individual computer trusting a server or network to which it is connecting, a server or network trusting an individual computer connecting to it, and (new here) one network trusting another with which it is inter-connecting. Military airborne networks and the emerging commercial Internet of Things and People (IoTaP) are complex dynamic environments. One problem is the need for sophisticated techniques; another is the difficulty of integrating these into a comprehensive end-to-end solution for wireless mobile ad hoc network (MANET) attestation despite $SWAP constraints. Our solution is agent/capability-based Mandatory Access Control, information dispersal complementing strong encryption, and Trusted Computing Group (TCG) Direct Anonymous Attestation (DAA) inspired Distributed Attestation for Mobile, Multicast & Multiple Operator Networks (DAM3ON). The goal is secure and trusted transactions in a distributed Network Centric Operations environment. TPM chips, security enhanced bootloaders, microkernels that enforce capability based access control, hypervisors, security enhanced operating systems, robust encrypted distributed file systems, scalable reliable multicast transport protocols and [zero knowledge] remote attestation protocols all exist, but no architecture integrating these and exploiting their synergies has existed heretofore. BENEFIT: The transition opportunities of integrating the RADTiN/DAM3ON solution into industrial and commercial networks are based upon: integrating the software solution into an existing network and data security hardware product as a licensed sale; integrating the software solution into an existing mobile platform developer as part of an NSP offering, as an OEM sale; or developing our own distribution channel to sell customized versions of the RADTiN/DAM3ON software product line as an after-market reliability and security solution. The industrial and commercial target customers would have a great deal in common with the DoD users being addressed, having to address security and trust issues with remote and/or mobile networked nodes/platforms/smartphones. The team will address these potential users (national grid network monitoring/inspection mobile networked platforms, private corporate network operators, ad hoc disaster relief organizations; border/crisis monitoring platforms, etc) with customized demonstrations based upon their most likely deployed platforms But the most unique commercialization opportunity is in the emerging digital currency/commerce marketplace. Using the team"s already existing reputation (as the enablers of the world"s first BitCoin/vending machine transaction) and relationships, the RADTiN/DAM3ON software will be demonstrated as a key enabling technology for the establishment of trust and the security of transactions between digital wallets and physical point-of-sale machines. The key to penetration in this emerging marketplace is to maximize automation (ease of operation), verified security of your smartphone and digital wallet, and trust in the sales machine, the protection of your data in motion (to the machine) and at rest (in the cloud) The ability to clearly attest to the security of your smartphone, your digital wallet, and your data before, during, and after the transaction will be of interest to the firms attempting to broaden this emerging economy. The demonstration of this technology will allow the team entry into these diverse marketplaces, and represent a unique potential commercialization opportunity for a DoD SBIR research effort.
* information listed above is at the time of submission.