Re: [RFC] UBIFS authentication

From: David Gstir
Date: Thu Jan 25 2018 - 03:49:41 EST

Next message: Leon Romanovsky: "Re: linux-next: build failure after merge of the rdma tree"
Previous message: tip-bot for Vitaly Kuznetsov: "[tip:x86/hyperv] x86/hyperv: Stop suppressing X86_FEATURE_PCID"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi!

> On 17.01.2018, at 16:19, David Gstir <david@xxxxxxxxxxxxx> wrote:
>
> Hi everybody!
>
> Richard and I have been working on extending UBIFS' security features and came
> up with the following concept to add full file contents and metadata authentication.
>
> For block devices like eMMCs dm-crypt and dm-verity/dm-integrity can be used to
> get full data confidentiality and authenticity, but for raw flash or more
> specifically UBIFS, existing options are not ideal:
>
> One option is to use eCryptfs with some out-of-tree patches that add AEAD cipher
> (AES-GCM) support, but does not look like there was much progress recently [1].
>
> Another option is to use IMA/EVM as described by Marc Kleine-Budde in his
> ELCE 2016 talk [2], but this just protects the file payload and some attributes
> and not the full filesystem data structures.
>
> A short overview of existing options is also given here [3].
>
> Due to the design of UBIFS it is actually a bit easier than on other filesystems
> to authenticate its data structures and ensure consistency of on-flash data.
>
> I've attached the whitepaper below and also published it here [4].
>
> Comments are welcome. :)

*ping*

Did anybody get a chance to look at this yet, or is everybody still busy with Meltdown and Spectre? ;D

Thanks,
David

Next message: Leon Romanovsky: "Re: linux-next: build failure after merge of the rdma tree"
Previous message: tip-bot for Vitaly Kuznetsov: "[tip:x86/hyperv] x86/hyperv: Stop suppressing X86_FEATURE_PCID"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]