The Data Tethers project adds security functionality to the OpenSolaris operating system designed to prevent sensitive data from leaving safe environments. The most obvious use of the technology is to prevent loss of data when laptops are stolen or when removable media containing sensitive data are lost. There are other important uses, as well.
Data Tethers will allow owners of data items to specify policies for accessibility of particular pieces of data. The Data Tethers system must enforce those policies. When environmental conditions change, Data Tethers will automatically encrypt the tethered data to prevent access in insecure conditions. For example, when a laptop computer moves out of a secure environment, sensitive data whose policy requires it to be used only in that environment must be effectively removed from the laptop.
Data, not merely files, are tethered, so if data controlled by a Data Tethers policy is copied, the policy must also apply to that copy. Doing so in a flexible, efficient manner that does not over-constrain the use of data is a major research challenge for this project.
The primary work on Data Tethers is being done at UCLA. This list will allow other OpenSolaris developers to learn about progress on the system and provide input and assistance on this project.