I’ve moved most of the updates to a new site. The rest of this page I’m leaving up for history purposes.
For the latest status, follow along at the CryptoCape Google Group.
The CryptoCape extends the hardware cryptographic abilities of the BeagleBone Black (BBB). The BBB’s AM335x processor already has a powerful cryptographic hardware for AES, SHA, and MD5 as well as a hardware random number generator. With additional hardware, the BBB with the CryptoCape can be an attractive solution for devices with increased security demands.
Design and source (eventually) are hosted at GitHub.
The explosion of the Maker movement and DIY hardware has been incredible, however as a security engineer, I’d like to see better tools and options for those trying to secure their embedded devices. I’d like to build a module that provides a system’s engineer with some security options.
To provide an open, peer-reviewed, cryptographic module that enhances the capabilities of the BeagleBone Black.
The project is still in early conceptual design. My current thoughts for features are:
- Hardware implemented algorithms: Elliptical Curve Cryptography (ECC), RSA, and SHA-2.
- Additional hardware random number generators.
- Real Time Clock.
- Electrically Erasable Programmable Read-Only Memory Chips (EEPROMs) for authentication keys (if desired).
- Ideally, a Trusted Platform Module (TPM).
- Increase performance of networked applications that perform cryptographic operations. For example, an RSA-based TLS handshake could benefit from hardware RSA signature support. If the session negotiated an AES cipher, the AES hardware would perform the encryption / decryption and save CPU cycles.
- Create an air-gapped cryptographic embedded system. Imagine a smart-card like device where you can keep your GPG/PGP keys in a secure memory module. Attach a keyboard, a small LCD screen, and install Emacs to compose your messages. Encrypt and sneaker-net the message over to another computer for transmission.
- Run a Tor relay and contribute bandwidth to a privacy enhancing network.
Research and evaluate various cryptographic Integrated Circuits (ICs). Learn to Solder. 🙂 Breadboard various components (in progress 12NOV13) Design the cape (in progress 1JAN14). Solicit peer review on the cryptographic design.Done at SparkFun in January. Visit local hackerspaces for help designing PCBs.Thanks [Loveland Cratorspace!](http://www.lovelandcreatorspace.com) Make and test.
- Atmel ECC CryptoAuthentication.
- Atmel I2C TPM.
- Real Time Clock – DS3231. With onboard battery compartment.
- Atmel SHA CryptoAuthentication.
- Atmel AES CryptoAuthentication.
- ATmega328P – flashable from the BBB, for DIY crypto. Although, I recommend NaCl.
Feel free to contact me (on the right sidebar for various ways) or leave a comment with suggestions, recommendations, or critique of the design.
I promise to use this page as the main point of information. I will post updates to my blog as I make progress, so feel free to subscribe. I also blog about books and various other things, but hang in there; it’ll make you more well-rounded. :p