What is aegis [MSSF] and how does it affect Free Software development?
 

It was mentioned several times, I've decided to create this thread to determine what is aegis, and how it will affect us.

In short aegis is actually part of:
Mobile Simplified Security Framework (MSSF)

EDIT: Renamed the topic title.
EDIT2: Renamed again

Re: What is aegis?
 

Aegis is the new security framework of Harmattan. A pain in the *** if you ask me.

Re: What is aegis?
 

If you ever used symbian it's more of the security thingy they made that you cannot install unsigned applications.

Re: What is aegis?
 

Do you need to have a certificate and sign all your apps like symbian? That was a major pain in the ***. Especially for homebrew apps.

Re: What is aegis?
 

You don't need to sign applications, but applications need to request permission to access the tracker, use dbus etc. This is done by including a .aegis file in your .deb package that uses an XML-like syntax.

Re: What is aegis?
 

Still same like symbian...

Symbian = Without .cer & .key to sign your sisx files = No Permission
Meego = Without .aegis to include in your deb files = No Permission

Re: What is aegis?
 

Aegis here in detail thanks to joerg_rw. Paraphrasing some quotes (from infobot on #maemo IRC channel):
More information is also available on wikipedia according to infobot

Re: What is aegis?
 

Thanks for this discussion, am skipping the N9 then... I saw how such a mechanism killed UIQ3 on Symbian...

Re: What is aegis?
 

Thank you for pointing me to the right direction. The first time the aegis was mentioned I've failed to find online documentation (either due to the missing "dbus" keyword or it simply was not there)

For all interested Harmattan documentation on security is here.

The information on aegis syntax is here.


So far it sounds like TPM, which if it is true s*** big time.

Re: What is aegis and how does it affect Free Software development?
 

Sadly, the problem with Aegis comes with its policy; currently, you are still to see <sarcasm> "the best of it" </sarcasm> :): its current policy is rather allowing to applications from the unknown source (aka unsigned applications).

How this policy will be in later firmwares is something I don't know. The hints that are in the current firmware's restok.conf file do not look good, but for the time being, I am giving them the benefit of the doubt.

Re: What is aegis and how does it affect Free Software development?
 

Is it possible to post restok.conf?

So far I've got the feeling that this would allow Nokia (or third party such as ISP) to deny access to certain applications at later time.

That would be so Apple-like.

Re: What is aegis and how does it affect Free Software development?
 

Posting the full file is probably not Ok, but I posted the interesting fragment here

That would only work if we were able to sign our own applications -- we are all assuming we are not going to (unless you planned to target Ovi). They do not have any way to identify an unsigned application exclusively, so they can't do that.

Therefore, the only source of nuisance for a free software developer is what is allowed for unsigned applications. So far, even disabling Aegis itself is allowed. But let's see what they have in store.

Re: What is aegis and how does it affect Free Software development?
 

If you refer to http://pastebin.com/KPX88Sgh, that is unavailable.

Re: What is aegis and how does it affect Free Software development?
 

Aw, you'll have to wait until tonight then. But that's not that important, it's just a list of tokens and most probably you'll have no idea what they mean unless you're familiar with Harmattan.

Re: What is aegis and how does it affect Free Software development?
 

The more I read about Harmattan and Mobile Simplified Security Framework, the less I like it.

So far I have confirmed that it is true TPM platform, and it seems to be similar to what Motorola did in past.

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

I've found the most comprehensive overview of goals and security features of MSSF at:

Mobile Simplified Security Framework MSSFv2, by Dmitry Kasatkin, MeeGo Computers, Nokia, at MeeGo Conf, Moscow, Russia, 11.03.2011


Security goals:

Protection of the user
1.1 Disallow loss/stealing of owner's personal data

• E.g mallware sending user's contacts

1.2. Miss-use of the device (unexpected costs)

• E.g mallware sending sms to pay numbers

Protection of the Device
2.1 Must meet regulatory requirements and specification

• Identity protection

2.2 Disallow changing of RF, EM or WiFi tuning values

Protection of the Business
3.1 Disallow braking of the SIM/Subsidy Lock

• Lose of business

3.2 Limit what can be installed on the device

• AT&T variant needs to stay AT&T variant

3.4 To reduce fraud against Business

• False service bills, Device cloning, back-door manufacturing

Enable new services
4.1 Allow services such as Music store or App Store and support copy protection

• Mobile payments and Billing

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

Thank you very much but I don't want this sort of thing.

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

TC is controversial because it is technically possible not just to secure the hardware for its owner, but also to secure against its owner. Such controversy has led opponents of trusted computing, such as Richard Stallman, to refer to it instead as treacherous computing, and some academic opponents have begun to place quotation marks around "trusted computing" in scholarly texts.[2][3]

The trusted computing platform need not be used to secure the system against the owner. It is possible to leave to the owner rights of authorization and have no centralized authority. It is also possible to build open source stack of trusted modules, leaving for the security chip only the task to guard against unauthorized modifications. Open source Linux drivers exist [4] to access and use the trusted computing chip. However, uncooperative operating systems can misuse security features to prevent legitimate data exchange.

Source: http://en.wikipedia.org/wiki/Trusted_Computing

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

Seems like it's more like the current mobile OS's out there. The price to pay for the Service providers to accept it considering how the n900 was easily unlocked from restrictions for example by vodafone. Will wait and see how this develops.

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

Based on this diagram it looks like the Service provider can completely disable Open Mode (developer mode, which is restricted btw). I think people should be aware of this before buying this phone.

http://i1208.photobucket.com/albums/...ot_process.png

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

Referring to Stallman here is a bit irrelevant, since I believe he doesn't use any mobile communications device out of paranoia.

As long as the security features can be disabled (along with losing access to the data that was intended to be secured by the system). IOW, if subscription to some media is only licensed with DRM intact, disabling the system should result in no access to the DRM content. While some may consider this "preventing legitimate data exchange", if the user is aware of the licensing terms and impact, they have agreed that it is not legitimate.

IMHO, Maemo was too open. I wouldn't want to see what would have happened if Maemo 5 became as popular as Android, with 100 000 apps and 5000 trojans ...

If you want to achieve mass market adoption, you need to protect users from themselves ...

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

I see nothing wrong with this technically. If you don't like subsidy locks/network locks, you should address this via non-technical means (e.g. consumer protection agency or similar) or live in a Free country :-p

See above.

If you don't like copy protection, don't buy copy-protected media. But, not supporting this would probably mean no adoption by non-technical users who don't care about DRM etc., but will "Can I get music from XXX on this phone".

If you want to see N9 be successful to consumers (and not just open source enthusiasts), software developers in the "ecosystem" need to have some reassurance that their development time will be recovered by sales (and not mass piracy).

If you don't like proprietary software ... well the answers are obvious (and have been relatively successful for N900, but it's not a mainstream device/platform is it).

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

Also see Qole's blog post where he calls for Nokia to reconsider platform security. Bottom line: disable aegis by default because it makes no sense any longer to have it there, it's more of a nuisance than anything else.

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

His mention wasn't the point of pasting the citation--it's the summary about the "Trusted Computing Platform" (aka Treacherous Computing Platform) that was the point. The point being that using "trusted" is such a great way to make it sound good, and the blowback being that the freedom hungry consumer would probably be better off calling it "treacherous."

That's part of the problem, isn't it? From the sound of it, you can't turn it off.. and more importantly, DRM is just a SLICE of TC... a mere small pinprick of what TC was supposed to be about. The entire POINT of TC is to remove control from the users and put all ownership back into the hands of whomever controls the "rights" for the system. You can't even so much as BOOT THE OS without permission to do so. (Please read the article for details on TC and on the Fritz chip, for example.)

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

Actually, I would like to confirm that is comletely relevant, since TPM does not target only communication devices.

DRM is completely unacceptable in my opinion.

Actually, it is closed source that makes that scenario very difficult to control. Open source can be reviewed by many sides.

Here is the illustrative video.

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

This is controlled through contract. You are still obliged to pay. Locking a phone to a particular SIM is a form of monopoly.

BTW: they don't need to lock up the phone itself for SIM enforcement. It is enough to use the GSM module for that purpose. This is simply used to justify the closure.

I don't believe somebody else should decide what is run/played on my device.

If I am breaching the law, there is a court for such cases.

Then there is nothing to differentiate the N9 from other devices.

I don't want a mainstream device.

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

The most obvious implication of the diagram from the presentation I've posted is that it is not possible to effectivly use kernel that is not signed by nokia.

Even the bootloader is verified.

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

As the video pointed out at the end... they already decided not to trust you. So, if they don't trust you, why should you trust them?

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

Since my last comment on this thread, I rest my case... :s

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

The problem with this approach to security, is that it is more appealing to big systems (governments, corporations, etc) who actually own the many headsets of the employees. From that point this framework, deserves applause in every aspect.

When you apply this concept to the consumer electronics, it is basically meant to limit the end user (and developer). You could argue that user essentially does not own the device.

I've read the qole's blog post, which calls for dropping of this framework from the official release of N9. It seems that his Easy Debian project is completely bared from N9, unless they disable the framework, or make it disablable by the end users.

So far I have no information if this will be the case.

At some point qole says:

The only thing I have to add to qole's post, is that such open kernel MUST BE SIGNED BY NOKIA, otherwise the "secure" bootloader will refuse to load it. Furthermore the bootloader itself must be signed by nokia as well, since the ROM based bootstrap verifies authenticity and integrity of bootloader.

I guess will have to ask qole for an update.

The question for the n950 users is: does everything else work in "Open Mode" (triggered by unsigned kernel)?

The Open Mode might not be available, if the SIM lock feature is used.

If Nokia does not cooperate on this subject, the only way to "open" device is to somehow disable the ROM ( I assume that this is SoC ROM) bootstrap, or provide external ROM, and for that proper documentation is needed from TI. Pure speculation at the moment.


As for Meego, this was supposed to be included in Meego 1.2, but apparently it was dropped. I suspect this may be the main reason Nokia has decided to push Harmattan forward instead.

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

Nah, you got your timelines mixed up. MeeGo 1.2 release came after Feb11.

Anyway.

For freedom lovers, if:
* SIM lock isn't active
* Security lock isn't active (you know, pincode, protecting data)
* Developer mode is active (i'm a little unsure if this is even required)

You can flash your own kernel and rootfs without aegis. We have MeeGo CE running with phonecalls, etc.

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

In *some* countries.

In *some* countries.

That only exists in *some* countries.

So no modern phones subsidised by contracts are able to make phone calls (which is where the operator is hoping to recover their subsidy) via any means but GSM?

Then buy your device from someone who allows you that freedom.


Then stay with your N900 or Neo.

I would accept a device which *can*, but doesn't always need to, enforce "platform security", in order to be competitive in certain restrictive markets which have a huge influence on device adoption, *if* I have the choice to disable the platform security.

Again, this is not a technical issue. If you don't like the fact that your operator only provides sim-locked devices (note, this is check done before checking if open mode is allowed, so no unlocked phone can be prevented from being used in open mode), then I fail to see why you use this operator.

If your country allows all operators to sim-lock all phones forever, well, I think you have bigger problems ...

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

if your phone is sim-locked and your operator has prevented open-mode. If you have a non-sim-locked phone, or if your operator allows open mode, you can use an unsigned kernel.

The bootloader is always verified, and device reset if it does not verify, regardless of simlocking etc. or not. This may be a more serious problem than the kernel verification (which can fail if unlocked or open mode is allowed).

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

Thanks for clearing that part: custom kernels can run under "Open Mode".

Do you know if the Service Providers will be able to disable Open Mode (Development Mode)? Diagram suggests that as possibility, and that is important for people obtaining N9s through contract.

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

If you obtain a device through contract, the terms and conditions of it's usage is through that contract. Usually they'll do this through SIM lock.

If you want full freedom, pay for the whole thing at once. It's often cheaper to get a temporary loan with the bank anyway and/or set aside money.

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

If it is a subsidised phone, with the subsidy given on the basis of additional revenue that the operator will derive from your (restricted) use of the device (e.g. billable communication, licensed media etc.), then it is not your device.

If you have a device which is not subsidised in any way (but your plan covers the full cost of the device), then the operator should be obliged to allow you to unlock your device.

if the operator is *not* obliged to unlock *your* device, once again, the technical implementation is not your problem, your problem is that your government supports big companies dictating how you use communication devices. The solution to this is not technical (as the companies will simply use other means to prevent you using a device that doesn't have the technical means to support their business model). Unfortunately, technical solutions that allow them to do this already exist, and you can't change that.

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

In short yes, anything other is quite invasive.

From whom? As a "consumer" we have to state the features we are interested in. Hopefully someone will address those needs.

My Neo works fine thank you. :D
Hopefully GTA04 boards will be available.

I am not talking about the choice of informed buyer. I am talking about the majority of posters at N9 thread, who will buy the device without checking if it can be run in Open Mode.

In short yes.

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

Is there any quick way of checking if Open Mode is disabled on device while running Harmattan?

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

No clue, sorry. SIM lock is more likely to be it though.

Re: What is aegis [MSSF] and how does it affect Free Software development?
 

We know Harmattan is a MeeGo by Nokia, so maybe less open and hackable but this won't change anything for me, I'll use the N9 because there's no better device actually. What about the N900 platform security, how does it works?