Making Remote Attestation Useful on Linux - Brandon Weeks & Matthew Garrett, Google
Making Remote Attestation Useful on Linux - Brandon Weeks & Matthew Garrett, Google
TPM remote attestation allows a machine to provide proof about what happened during its boot process, in turn allowing appropriate policy and trust decisions to be made by remote services. But the flexibility of any such decision is determined by the richness of the available information that is logged and can be reported, and right now in Linux there's very little available information.This presentation will give a brief overview of remote attestation and the state of available tooling under Linux, along with the various components that generate events that can be used for policy decisions. It will compare Linux to Windows, and identify the areas where Linux is currently deficient. Finally, it will propose some potential solutions for improving the state of the ecosystem and move on to a discussion around whether there are better alternatives.
Видео Making Remote Attestation Useful on Linux - Brandon Weeks & Matthew Garrett, Google канала The Linux Foundation
TPM remote attestation allows a machine to provide proof about what happened during its boot process, in turn allowing appropriate policy and trust decisions to be made by remote services. But the flexibility of any such decision is determined by the richness of the available information that is logged and can be reported, and right now in Linux there's very little available information.This presentation will give a brief overview of remote attestation and the state of available tooling under Linux, along with the various components that generate events that can be used for policy decisions. It will compare Linux to Windows, and identify the areas where Linux is currently deficient. Finally, it will propose some potential solutions for improving the state of the ecosystem and move on to a discussion around whether there are better alternatives.
Видео Making Remote Attestation Useful on Linux - Brandon Weeks & Matthew Garrett, Google канала The Linux Foundation
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
V4L2 M2M as the Driver Framework for Video Processing IP - Karthik Poduval, Amazon Lab126
The Evolution of Milvus: A Cloud-Native Vector Database - Frank Liu, Zilliz
Mentorship Session: Dynamic Program Analysis for Fun and Profit
Keynote: The Difference Between a Crowd and a Community - Joseph Gordon-Levitt
LF Live Webinar: Architecting Your DevOps Pipeline for Automation at Scale
Open Source Drones Summit by The Dronecode Foundation
Enabling Linux Usage in Space Applications - Antoine Certain, Airbus Defence and Space
Mentorship Session: Stress-ng: How to Stress Test Your Computer (and Possibly Break It)
Userspace control of memory mappings to support live update - James Gowans & David Woodhouse
Opening Keynote: What a Difference 5 Years Makes - The New Open World - Jim Zemlin
Introduction to the J1939 Kernel Stack - Marc Kleine-Budde, Pengutronix
LF Live Webinar: Why You Need An Ingress Controller and How to Pick One
BoF: Automotive Grade Linux Developer Community - Walt Miner, The Linux Foundation
Limits of Development - Hannes Reinecke
Keynote: The Rise of DevSecOps - Yvonne Wassenaar, Chief Executive Officer, Puppet
From Zero to First Test in Your Own LAVA Laboratory in less than 45 minutes) - Paweł Wieczorek
Linux You Can Drive My Car - Walt Miner, Linux Foundation
OSS + ELC - Keynotes Day 1
Millennium Technology Prize Winners: Torvalds and Yamanaka
VirtIO- a Common Device Framework to Achieve Software Defined Vehicle Jerry, Zhao Jiancong
SONiC – open than ever - Dave Maltz, Azure Networking, Microsoft