Re: Kdump with signed images

From: Vivek Goyal
Date: Thu Oct 25 2012 - 10:17:38 EST

Next message: Borislav Petkov: "[PATCH 0/5] Rework MCA configuration handling code, v2"
Previous message: Stephen Rothwell: "Re: linux-next: build warnings after merge of the akpm tree"
In reply to: Mimi Zohar: "Re: Kdump with signed images"
Next in thread: Mimi Zohar: "Re: Kdump with signed images"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Oct 25, 2012 at 02:10:01AM -0400, Mimi Zohar wrote:

[..]
> IMA-appraisal verifies the integrity of file data, while EVM verifies
> the integrity of the file metadata, such as LSM and IMA-appraisal
> labels. Both 'security.ima' and 'security.evm' can contain digital
> signatures.

But the private key for creating these digital signature needs to be
on the target system?

Thanks
Vivek
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Borislav Petkov: "[PATCH 0/5] Rework MCA configuration handling code, v2"
Previous message: Stephen Rothwell: "Re: linux-next: build warnings after merge of the akpm tree"
In reply to: Mimi Zohar: "Re: Kdump with signed images"
Next in thread: Mimi Zohar: "Re: Kdump with signed images"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]