[Testing] Security Meeting Minutes, 8/28/07

Bryan.Ma at quantatw.com Bryan.Ma at quantatw.com
Tue Aug 28 23:28:49 EDT 2007 

What will happen if we set the WP tag on the older machine?

What stage unit (e.g. B3, B2...) is not recommended to do that ?

 

  -- Bryan

 

________________________________

From: testing-bounces at lists.laptop.org [mailto:testing-bounces at lists.laptop.org] On Behalf Of Kim Quirk
Sent: Wednesday, August 29, 2007 6:26 AM
To: noah at laptop.org; C. Scott Ananian; Christopher Blizzard; Dan Williams; Ivan Krstić; Jim Gettys; Kim Quirk; Michael Stone; Michailis Bletsas; Mitch Bradley
Cc: testing at laptop.org; Walter Bender
Subject: [Testing] Security Meeting Minutes, 8/28/07

 

8/28/07, every Tues 4pm

 

Attending: Jim, Michael Stone, Kim, Scott, Mitch 

*	Activation: Mitch has written the code to handle signed OS and ramdisk images, look for lease file and its signature. He has created trial keys and is testing this out. 
*	Scott will integrate Mitch's work into Pilgrim build in order to generate signed kernel for the next level of testing. 
*	After that we need real crypto for the next level of testing. 
*	Scott is waiting to receive code from Ivan for his testing of activation. Ivan has been ill. 
*	Quanta told Mitch that they did NOT set the WP (write protect) flag at the end of the manufacturing cycle on the latest C build units. So when we are ready to test real activation on these machines we will need to first set that bit ourselves. 

*	There are still some process questions as to once we are using real keys, will we be signing all builds; or providing keys and documentation to all developers in order to continue development efforts? Need to document this. 
*	Is there a 'safe' place where a key can be stored on the laptop that won't get over-written by various OS reflashes, etc. 
*	Need to ensure that clocks are set properly at mfg in order for the lease feature to work. 
*	This brought up the question of older machines. We don't want to set the WP bit on older machines and we don't want them to fall into the activation/lease system. They should be permanently unlocked. 
*	Other process questions that Michael brought up related to our security system (not just code, but process, monitoring, reporting, and fixing problems): 

	*	How do we measure 'security'? 
	*	Who measures and monitors this system? 
	*	When or how often is it done? 
	*	What procedures are used? 
	*	What happens when a security problem is found? 
	*	How do we fix and distribute changes? 

*	Testing issues came up; Michael and Kim will set up another time to come up with some test cases and thoughts on priorities for testing. 
*	Scott and SJ need to talk about the use case for sharing information more broadly and how security fits into that picture. Can we use a webserver on the XO; are there alternatives that would serve the same purpose? We should bring this up again at the school server and/or content meetings [School server meeting is Wed 3pm; content is Tues 3pm] 

- Kim 

Minutes can be found here: http://laptop.org/teamwiki/index.php/Team:Main_Page#Meeting_Minutes

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.laptop.org/private/testing/attachments/20070829/b8348b6e/attachment-0001.htm

More information about the Testing mailing list