Motivation
EVE system has been built with security at the core of its design. One of its SECURITY principles is that, EVE should be trustworthy, and it should provide a deterministic way to measure its software layer, right from the firmware, all through bootloader, kernel and user-space applications. It should also provide a mechanism to report these measurements to a third-party for attestation. This is to provide a verified software environment to launch user applications, i.e. the Edge Container Objects. Since any software can be potentially modified, such measurement architectures typically use a hardware based root of trust (HRoT). Here we present a solution based on Trusted Platform Module as the Hardware Root of Trust.
Trusted Platform Module as the Silicon RoT
...