System Assurance Solutions and Tools

MRoT - Mobile Roots of Trust

Mobile Roots-of-Trust (MRoT), which are highly trustworthy tamper evident components, provide a foundation to build security and trust for mobile devices. MRoT, is a fully software-based dynamic mobile trusted module technology, supported by DHS S&T Cyber Security Division (CSD). MRoT measures and verifies the device’s static and runtime state (e.g., boot loader, operating system, apps, etc) to enable trust and security. It can be utilized to detect malicious system change or activity, and to ensure that access to critical information and software can only be performed in a trusted state. It requires no modifications to the underlying operating system kernel, nor any manufacturer or service provider support for insertion. It comes with a user interface that allows adding mobile applications to the MRoT protected vault as well as a standard API.