Book Image

BeagleBone for Secret Agents

By : Joshua Datko
Book Image

BeagleBone for Secret Agents

By: Joshua Datko

Overview of this book

Related Content you might be interested in

Current Title:

Small book image
BeagleBone for Secret Agents
Joshua Datko
Sep, 2014 | 162 pages
No titles found
Table of Contents (14 chapters)
BeagleBone for Secret Agents
BeagleBone for Secret Agents
Credits
Credits
Foreword
Foreword
About the Author
About the Author
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Creating Your BeagleBone Black Development Environment
Creating Your BeagleBone Black Development Environment
Introducing the BBB
Creating an embedded development environment with Emacs
Finding additional background information
Summary
2
Circumventing Censorship with a Tor Bridge
Circumventing Censorship with a Tor Bridge
Learning about Tor
Installing Tor on BBB
Understanding Tor exit policies
Setting bridge-specific settings
Starting your new Tor bridge
Enabling port forwarding
Adding physical interfaces to the bridge
Determining your bandwidth with speedtest-cli
Controlling the bridge with the Stem library
Connecting to your obfuscated bridge
Continuing with Tor-related projects
Summary
3
Adding Hardware Security with the CryptoCape
Adding Hardware Security with the CryptoCape
Exploring the differences between hardware and software cryptography
Touring the CryptoCape
Discovering the I2C protocol
Understanding the benefit of cape EEPROMs
Creating an eLinux wiki site
Keeping time with a real-time clock
Trusting computing devices with a Trusted Platform Module
Providing hardware authentication with ATSHA204 and ATECC108
Encrypting EEPROM data with the ATAES132
Combining the BBB with an ATmega328p
Building a two-factor biometric system
Summary
4
Protecting GPG Keys with a Trusted Platform Module
Protecting GPG Keys with a Trusted Platform Module
History of PGP
Developing a threat model
Generating GPG keys
Protecting your GPG key with a TPM
Adding the keypad
Taking ownership of the TPM
Extending a PCR
Unlocking your key at startup
Iterating on the threat model
Summary
5
Chatting Off-the-Record
Chatting Off-the-Record
Communicating Off-the-Record – a background
Installing BitlBee on the BeagleBone
Adding OTR to your BitlBee server
Marshalling your IRC connections with a Bouncer
Extending the project
Summary
Selected Bibliography
Selected Bibliography
Chapter 1
Chapter 2
Chapter 3
Chapter 4
Chapter 5
Index
Index

Iterating on the threat model

Threat modeling and system design is an iterative process. The system we built in this chapter is a good start, but it can be improved. We identified a problem at the beginning of the chapter in that we still had to enter the GPG passphrase from a potentially compromised computer. The code entry on the keypad is currently only protecting the GPG key when the BBB is powered off. It also protects the key if an attacker who doesn't know the code boots the BBB, since the PCR will not have the correct value after the 10-second window has passed. To mitigate against the key logger attack, we would want to enter a passphrase directly into the BBB.

There is a piece of software called gpg-agent, which manages your passphrase per login session. It can support different types of pin entry programs. For example, one pin entry program is X-Windows-based and another supports a command-line interface. You could certainly create your own pin entry program that supported your...

Previous Section
End of Section 10
Next Section