[RFC PATCH v5 00/11] Integrity Policy Enforcement LSM (IPE)
Pavel Machek
pavel at ucw.cz
Sun Aug 2 11:55:45 UTC 2020
Hi!
> IPE is a Linux Security Module which allows for a configurable
> policy to enforce integrity requirements on the whole system. It
> attempts to solve the issue of Code Integrity: that any code being
> executed (or files being read), are identical to the version that
> was built by a trusted source.
How is that different from security/integrity/ima?
Pavel
--
(english) http://www.livejournal.com/~pavelmachek
(cesky, pictures) http://atrey.karlin.mff.cuni.cz/~pavel/picture/horses/blog.html
More information about the Linux-security-module-archive
mailing list