Find all needed information about Digital Signature Support For Ima Evm. Below you can see links where you can find everything you want to know about Digital Signature Support For Ima Evm.
http://selinuxproject.org/~jmorris/lss2011_slides/IMA_EVM_Digital_Signature_Support.pdf
08.09.2011 Digital Signature support for IMA/EVM 3 Introduction to IMA/EVM Kernel integrity subsystem includes 2 modules Linux Measurement Architecture (IMA) – ensures integrity of file content – integrity measure: reference hash in security.ima Extended Verification Module (EVM) – Ensures integrity of the file metadata – Integrity measure: reference HMAC in
https://sourceforge.net/p/linux-ima/wiki/Home/
We extended make_ext4fs to compute and set IMA/EVM signatures while creating a filesystem. It uses extended version of 'evmctl' to compute signatures by passing all relevant file metadata using evmctl command line parameters. Here is a patch that adds IMA/EVM support to the make_ext4fs (0003-IMA-EVM-labelling-support.patch). Additional tools
https://www.mankier.com/1/evmctl
evmctl man page. evmctl — IMA/EVM signing utility Synopsis. evmctl [options] <command> []Description. The evmctl utility can be used for producing and verifying digital signatures, which are used by Linux kernel integrity subsystem (IMA/EVM).
https://github.com/vt-alt/ima-evm-utils
Userspace utils for Integrity Measurement Architecture (development fork) - vt-alt/ima-evm-utils
http://kernsec.org/files/lss2015/ima-applications-slides.pdf
• EVM was upstreamed in Linux 3.2, using a simpler and more secure method for loading the evm-key, based on the new Kernel Key Retention Trusted and Encrypted keys. • Support for protecting file metadata based on digital signatures was upstreamed in the Linux 3.3. • IMA-appraisal was upstreamed in Linux 3.7. 2015 Linux Security Summit ...
Need to find Digital Signature Support For Ima Evm information?
To find needed information please read the text beloow. If you need to know more you can click on the links to visit sites with more detailed data.
