1 |
The Gentoo Hardened team is proud to announce the startup of a new |
2 |
subproject on system integrity. Its goal is to support all integrity-related |
3 |
technologies in Gentoo Linux, offering good integration, tools and |
4 |
documentation to help users in setting up a more secure, managed |
5 |
environment, fully in line with the Gentoo Hardened vision. |
6 |
|
7 |
The first focus will be on supporting the Linux IMA/EVM technology within |
8 |
Gentoo Linux. It will support the necessary kernel patches, utilities and |
9 |
documentation to make integrity checks, compliance and reporting available |
10 |
to the wider public. The primary focus is to prevent offline tampering of |
11 |
files and images: when this occurs, the boot-up of the system detects the |
12 |
tampering and refuses to load further (or report this to the administrator). |
13 |
Online tampering detection is a second step. |
14 |
|
15 |
Next to the integrity subsystem within Linux (IMA/EVM), this project will |
16 |
also support the various trusted computing technologies (such as TPM |
17 |
support) through well-documented guides and tools. |
18 |
|
19 |
More information about this project is at |
20 |
http://www.gentoo.org/proj/en/hardened/integrity/index.xml |
21 |
|
22 |
Wkr, |
23 |
Sven Vermeulen |