Kdump with signed images

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Kdump with signed images
From: vgoyal@xxxxxxxxxx (Vivek Goyal)
Date: Thu, 25 Oct 2012 10:10:48 -0400
In-reply-to: <1351145401.18115.78.camel@falcor>
References: <874nlrv2ni.fsf@xmission.com> <20121019020630.GA27052@redhat.com> <877gqnnnf0.fsf@xmission.com> <20121019143112.GB27052@redhat.com> <871ugqb4gj.fsf@xmission.com> <20121023131854.GA16496@redhat.com> <20121023145920.GD16496@redhat.com> <87fw552mb4.fsf_-_@xmission.com> <20121024173651.GE1821@redhat.com> <1351145401.18115.78.camel@falcor>

On Thu, Oct 25, 2012 at 02:10:01AM -0400, Mimi Zohar wrote:

[..]
> IMA-appraisal verifies the integrity of file data, while EVM verifies
> the integrity of the file metadata, such as LSM and IMA-appraisal
> labels.  Both 'security.ima' and 'security.evm' can contain digital
> signatures.

But the private key for creating these digital signature needs to be
on the target system?

Thanks
Vivek

Follow-Ups:
- Kdump with signed images
  - From: Mimi Zohar

References:
- [RFC] Kdump with UEFI secure boot (Re: [PATCH v2] kdump: pass acpi_rsdp= to 2nd kernel for efi booting)
  - From: Eric W. Biederman
- [RFC] Kdump with UEFI secure boot (Re: [PATCH v2] kdump: pass acpi_rsdp= to 2nd kernel for efi booting)
  - From: Vivek Goyal
- [RFC] Kdump with UEFI secure boot (Re: [PATCH v2] kdump: pass acpi_rsdp= to 2nd kernel for efi booting)
  - From: Eric W. Biederman
- [RFC] Kdump with UEFI secure boot (Re: [PATCH v2] kdump: pass acpi_rsdp= to 2nd kernel for efi booting)
  - From: Vivek Goyal
- [RFC] Kdump with UEFI secure boot (Re: [PATCH v2] kdump: pass acpi_rsdp= to 2nd kernel for efi booting)
  - From: Eric W. Biederman
- [RFC] Kdump with UEFI secure boot (Re: [PATCH v2] kdump: pass acpi_rsdp= to 2nd kernel for efi booting)
  - From: Vivek Goyal
- [RFC] Kdump with UEFI secure boot (Re: [PATCH v2] kdump: pass acpi_rsdp= to 2nd kernel for efi booting)
  - From: Vivek Goyal
- Kdump with signed images
  - From: Eric W. Biederman
- Kdump with signed images
  - From: Vivek Goyal
- Kdump with signed images
  - From: Mimi Zohar

Prev by Date: [RFC] Kdump with signed images
Next by Date: [RFC] Kdump with UEFI secure boot (Re: [PATCH v2] kdump: pass acpi_rsdp= to 2nd kernel for efi booting)
Previous by thread: Kdump with signed images
Next by thread: Kdump with signed images
Index(es):
- Date
- Thread

[Index of Archives] [LM Sensors] [Linux Sound] [ALSA Users] [ALSA Devel] [Linux Audio Users] [Linux Media] [Kernel] [Gimp] [Yosemite News] [Linux Media]