blob: 73364ee98d307c8110d9c904e7f2a939a04504e8 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
|
% ----------------------------
\subsection{Linux}
% ----------------------------
\begin{frame}[fragile]
\frametitle{Linux Integrity Targets}
\begin{itemize}
\item Kernel Parameters
\begin{itemize}
\item Append only
\item Devicetree
\end{itemize}
\item Signed Modules (enforced)
\item Filesystem Integrity
\begin{itemize}
\item IMA/EVM: Hash/Signature per File
\item dm-verity: Hashtree per Block-Device
\end{itemize}
\item Mandatory Access Control
\begin{itemize}
\item SELinux/SMACK
\item Tomoyo/AppArmor
\end{itemize}
\end{itemize}
\end{frame}
|
