| 1 |
The Gentoo Hardened team is proud to announce the startup of a new |
| 2 |
subproject on system integrity. Its goal is to support all integrity-related |
| 3 |
technologies in Gentoo Linux, offering good integration, tools and |
| 4 |
documentation to help users in setting up a more secure, managed |
| 5 |
environment, fully in line with the Gentoo Hardened vision. |
| 6 |
|
| 7 |
The first focus will be on supporting the Linux IMA/EVM technology within |
| 8 |
Gentoo Linux. It will support the necessary kernel patches, utilities and |
| 9 |
documentation to make integrity checks, compliance and reporting available |
| 10 |
to the wider public. The primary focus is to prevent offline tampering of |
| 11 |
files and images: when this occurs, the boot-up of the system detects the |
| 12 |
tampering and refuses to load further (or report this to the administrator). |
| 13 |
Online tampering detection is a second step. |
| 14 |
|
| 15 |
Next to the integrity subsystem within Linux (IMA/EVM), this project will |
| 16 |
also support the various trusted computing technologies (such as TPM |
| 17 |
support) through well-documented guides and tools. |
| 18 |
|
| 19 |
More information about this project is at |
| 20 |
http://www.gentoo.org/proj/en/hardened/integrity/index.xml |
| 21 |
|
| 22 |
Wkr, |
| 23 |
Sven Vermeulen |
Archives