= Profile of Secure Signing Module =

  . This is the evolving specification for Possum, a secure signing module.

  . See
    . [[Possum]] for main information
    . [[Technology/Laboratory/Software/Possum]] for the developed design scope of the Software
    . [[Technology/Laboratory/Hardware/Possum]] for the developed design scope of the Hardware
    . [[Brain/Study/Possum/Hardware]] for the ongoing project concept

== Requirements ==

  . - Hardware must be readily sourcable and low cost.
  . - Security not speed
    . - It should have the minimum exposure to security difficulties.
    . - From 1k to 100k signing operations per day (not a requirement but a design space)
  . - It should have an application interface and a management interface,
   . - Interfaces preferably low-tech such as serial line.
   . - Interfaces need to integrate to normal PC hardware.
   . - Minimal other interfaces
  . - Small footprint:
   . Low power, low heat
   . - Extra points for power isolation
   . small size - Small will help the physical security

== Physical Security Module ==

  . - Preventing of access via non-policy methods
  . - Resists physical access
  . - Detects probes
  . - Etc

== Views ==

  . - Although these are listed as requirements, they are more design characteristics than hard requirements!
  . - For the right rationale, anything can be varied.
  . - Thought experiment:  put it in a safe.