TPM, Haskell and RPC mapped through NOVA

Nobody III hungryninja101 at ...9...
Tue Nov 11 16:59:34 CET 2014


I myself am not familiar enough with Genode to answer all your questions,
but I can answer the GPL question and give you some security advice.
The GPL will let you run closed-source applications on top of Genode like
they will on Linux, with the condition that you don't use any GPL-licensed
libraries. Unfortunately, given that you will have to link to Genode's core
library, the GPL will be an issue (and even the LGPL would for Genode in
its current state), but I would bet that Genode Labs would be very willing
to give you a license that will deal with that issue.
If you are providing cloud storage as well as cloud computing, I would
recommend that you encrypt the stored data (including file names) itself
such that the user's password is required to decrypt it. That would make
security-concerned users much more comfortable with using your storage,
since they would know that you can't read their data.
Also, non-browser interfaces are more trustworthy than browser-based ones,
since web browsers are subject to phishing and the like.
On Nov 11, 2014 2:09 AM, "Thomas Strobel" <ts468 at ...270...> wrote:

> Hi everyone,
>
> I'm new to the genode mailing list, so before I start asking questions,
> I would want to introduce myself. I'm a software developer and
> entrepreneur and I'm looking for the right tools to build a new product.
> It will be a cloud platform which focuses on security and privacy. Now,
> I'm interested in whether Genode could help me with that, and so I would
> be very thankful if you could help me with the questions I have so far.
>
> My first question is whether there is a resource multiplexer for a TPM
> in Genode? Is there something equivalent to the Virtual Trusted Platform
> Module in Xen? [1]
>
> My second question is how Genode can communicate with a system that is
> running inside a NOVA hypervisor. Let's say I want to run an unmodified
> Linux kernel on top of NOVA. Is there some kind of kernel module for
> Linux that acts as a client/server to some server/client running
> somewhere else in Genode? In other words, how can RPC be passed into and
> out of the Linux user space?
>
> My next question is how difficult it is to write Genode applications in
> Haskell. Is there an environment which can run Haskell applications,
> something similar to the Haskell Lightweight Virtual Machine for Xen? [2]
>
> My last question is about the GPL licensing of the Genode OS framework.
> What licensing requirements are there for the Genode applications? Do
> they have to be released under a GPL compatible license as well, or can
> that be closed source components?
>
> To put these question into relation, a few words about the software
> architecture that I have in mind. I want to run Genode at the lowest
> layer, and then run isolated, normal Linux systems on top of the NOVA
> hypervisor. The Linux systems should be controlled and managed by a
> Haskell application that is running directly on Genode and communicates
> with Linux user space programs through RPC. The PRC for the Linux user
> space applications should be somehow fed through NOVA and the Linux
> kernel. The Haskell application might not be available as open source,
> so that is where the last question is coming from.
>
> I would very much appreciate to hear about your thoughts.
>
>
> Many thanks in advance,
> Thomas
>
>
>
> [1] http://wiki.xen.org/wiki/Virtual_Trusted_Platform_Module_(vTPM)
> [2] https://github.com/GaloisInc/HaLVM
>
>
>
> ------------------------------------------------------------------------------
> Comprehensive Server Monitoring with Site24x7.
> Monitor 10 servers for $9/Month.
> Get alerted through email, SMS, voice calls or mobile push notifications.
> Take corrective actions from your mobile device.
>
> http://pubads.g.doubleclick.net/gampad/clk?id=154624111&iu=/4140/ostg.clktrk
> _______________________________________________
> genode-main mailing list
> genode-main at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/genode-main
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.genode.org/pipermail/users/attachments/20141111/154ee35d/attachment.html>


More information about the users mailing list