tree: b6a655ad564f4e86c32ddee6388ad7d7a045585c [path history] [tgz]
  1. cr50_agent/
  2. kms/
  3. root_ssl_certificates/
  4. scrutiny_x_smoke_test/
  5. syscall-check/
  6. tee_manager/
  7. tpm_agent/
  8. BUILD.gn
  9. README.md
src/security/bin/README.md

Fuchsia Security: Binaries

Overview

This directory contains all source code that results in a component, package or other binary that is intended to be included in some assembled version of Fuchsia.

Project Descriptions

  • credential_manager: Launched at /core/account/credential_manager and serves the fuchsia.identity.credential FIDL interfaces. The services provided by this component are consumed by the password_authenticator for storing and retrieving user credentials.
  • cr50_agent: Launched at /bootstrap/cr50_agent and serves the fuchsia.tpm.cr50 and fuchsia.tpm FIDL interfaces. This agent acts as a resource manager between the underlying driver implementation and the rest of the system.
  • root_ssl_certificates: Fuchsia's TLS root CA certificates (a.k.a. truststore). It serves as a resource package for components that use TLS.
  • tpm_agent: (WIP) Will be launched at /bootstrap/tpm_agent on devices that have a TPM2.0 but not a CR50. It will serve the fuchsia.tpm FIDL interface. This agent acts as a resource manager between the underlying driver implementation and the rest of the system.
  • tee_manager: Fuchsia - TEE communication stack. Marshals trusted application invocations; handles secure storage RPCs.
  • syscall_checker: Prints whether certain security sensitive system calls are enabled or disabled. Used in manual testing.