IMA appraisal master plan?
James Morris
james.l.morris at oracle.com
Sun Nov 19 20:47:55 UTC 2017
On Fri, 17 Nov 2017, Roberto Sassu wrote:
> LSMs are responsible to enforce a security policy at run-time, while
> IMA/EVM protect data and metadata against offline attacks.
In my view, IMA can also protect against making an online attack
persistent across boots, and that would be the most compelling use of it
for many general purpose applications.
--
James Morris
<james.l.morris at oracle.com>
--
To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
the body of a message to majordomo at vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
More information about the Linux-security-module-archive
mailing list