Linux Security Summit 2015/Abstracts/Kasatkin

From Linux Kernel Security Subsystem
Jump to: navigation, search


IMA/EVM on Android Device


Dmitry Kasatkin, Huawei Technologies


I would like to make a presentation and demo about running IMA/EVM on Android devices. While having IMA/EVM enabled kernel is not a big deal, labeling filesystem and initializing kernel with keys have certain a challenges on Android. We have made modifications to Android build system and file system creation tools to facilitate that. My presentation will present how to run IMA/EVM on Android and I will make a demo using Google Nexus phone using IMA/EVM to protect certain filesystem partitions.