BootTruster
BootTruster is the second part of our project, which focus on TrueCrypt, which is a free On-The-Fly disk encryption software which run on Windows, Mac OS X and Linux.
So BootTruster aims to consolidate the security model of TrueCrypt using TPM (Trusted Platform Module) chips.
These TPM chips permit for example to store cryptographic keys, and will permit for example to avoid the possiblity to use bootkit against TrueCrypt.
In order to understand what we are doing, you just need to read two articles:
- Bootkit: which explain the threat
- Trusted Platform Module: which explain the chip we are using.
Once you have read about the threat and about TPM chips, you should have understand that the boot sequence have to be secured by a hardware mechanism in order to be sure about the bootloader code capability.
Here is a demonstration of BootTruster protecting from a bootkit attack