Interesting idea that explains how to build awesome secure and portable system using Linux. From the article:
I designed this system with both security and portability in mind. My system uses a Linux kernel and the entire thing, applications, personal data, etc, takes up 1GB of space. It is split up into two parts, the operating system, and my personal data. The operating system is a 700MB live-CD, GRML, that generates a completely fresh install every single time I boot up the computer. Doing this means that if my system is ever hacked into, a simple restart of my computer fixes the problem. This also means that any configuration changes made or private information stored by any application, restarting reverts everything to a clean slate.
The personal data is encrypted using an AES-256 algorithm. The password I type in actually unlocks a special encrypted file which unlocks the real encryption information, meaning that my actual password is never stored in RAM (more specifically, DRAM). To prevent highly sensitive information from being discovered by remote hackers, which this layer of encryption would not protect against, an extra layer of encryption using either GPG or AES-256 provides two layers of encryption for highly sensitive data.
=> My Awesome Secure and Portable System
A team of electrical and computer engineering students at Calvin College is designing a digital electronic stethoscope running uClinux (pronounced “you-see-linux”) as its operating system. The team has chosen the Coldfire MCF5275 Microprocessor from Freescale. This is a 32-bit microprocessor with built-in USB Device, Ethernet, harware encryption, and eMAC. The eMAC (Enhanced Multiply Accumulate Unit) allows the processor to perform the intensive calculations required to do digital filtering and audio compression.The team has decided to use ÂµClinux as the project operating system. ÂµClinux is a very small (1 MB) open-source Linux operating system that will run from flash memory. The team has successfully compiled the ÂµClinux kernel and is running it on the development board.
(Fig 01: Simple, accurate, and easy to use electronic stethoscope! [Image credit – project home page])
The device is in its early stages of development and the project proposal and feasibility study is completed.
=> An electronic stethoscope powered by uClinux (via ./)
To encrypt and decrypt files with a password, use gpg command. It is an encryption and signing tool for Linux and UNIX-like operating systems such as FreeBSD, Solaris, MacOS and others. Gnupg is a complete and free implementation of the OpenPGP standard.
[click to continue…]