Language Selection

English French German Italian Portuguese Spanish

Kernel Log - Coming in 3.7 (Part 3): Infrastructure

Filed under
Linux

Linux 3.7 can sign kernel modules and verify those signatures and, therefore, the integrity of the modules before loading them (1, 2, 3, 4, 5, 6, 7). Some enterprise distributions have had similar features for a while – for example, to ensure that the modules used for troubleshooting are really from the distribution kernel. Developers have been working on integrating the functionality into Linux as some distributions want to load only signed kernel modules when booted with UEFI secure boot – this is now possible with the integrated code.

Another new feature is the integrity appraisal extension for the Integrity Measurement Architecture (IMA), which the kernel has supported for quite some time now (1, 2). IMA can store signed hashes for files and use them to recognise when binaries from the Linux installation have been changed.

rest here




More in Tux Machines

Yocto-on-i.MX6UL gateway serves up I2C and SPI on a DB9 port

Axiomtek’s compact “IFB125” DIN-rail IoT gateway runs Yocto Linux on an i.MX6 UL SoC with dual LANs, mini-PCIe expansion, extended temperature and vibration resistance, COM and USB ports, and a DB9 port that supports both SPI and I2C. Axiomtek has released a minor variation on its IFB122 IoT gateway. Like the IDB122, the new IFB125 runs Yocto Project code with Linux 3.14.52 on NXP’s 528MHz Cortex-A7 based i.MX6 UltraLight (UL) SoC. The headless gateway is designed for remote control and remote monitoring management applications such as unmanned control room, industrial automation, automatic parking lot, and traffic cabinets. Read more Also: Display-oriented eNUC SBC runs on Apollo Lake

Fedora Elections

Linux Foundation and Verizon

  • Verizon joins the Linux Foundation's ONAP project
    Verizon has joined the Open Network Automation Platform (ONAP) project as a Platinum member, a move that reflects the service provider's desire to drive industry harmony around network virtualization and automation. ONAP brings together several global carriers and vendors to build an automation and orchestration platform to transform the service delivery lifecycle for network, cable and cloud providers.
  • Verizon Joins Linux Foundation's Open Network Automation Platform Project as Platinum Member
    Verizon and The Linux Foundation, the nonprofit organization enabling mass innovation through open source, announced today that Verizon has joined the Open Network Automation Platform (ONAP) project as a Platinum member. ONAP brings together the majority of global carriers and vendors to build an automation and orchestration platform to transform the service delivery lifecycle for network, cable and cloud providers. ONAP enables nearly 60 percent of the world's mobile subscribers.

Android Leftovers