Abusing Linux as a Trusted Bootloader
Offered By: Linux Foundation via YouTube
Course Description
Overview
Explore the concept of using Linux as a trusted bootloader in this 21-minute conference talk by Eric Richter from IBM. Dive into the world of Petitboot, a kexec-based bootloader that leverages Linux to boot Linux, and its application in OpenPOWER firmware. Learn about the linux-integrity subsystem and the minimal kernel modifications required to transform Petitboot into a trusted boot loader. Gain insights into trusted boot on OpenPOWER and discover the potential for using Petitboot as a secure bootloader. Follow along as Richter covers topics such as TPM, measuring, kexec, IMA, limitations, and device tree serialization. Understand the implications of this work for the future of secure booting in Linux systems.
Syllabus
Introduction
Overview
TPM
Measuring
What we need
KExec
Adding Measurements
Fixing Measurements
IMA
Limitations
Measures
Serializing
Device Tree
Final remarks
Taught by
Linux Foundation
Tags
Related Courses
Overview and Recent Developments in TPM - Kernel Space UpdatesLinux Foundation via YouTube Updating Linux with TUX: Trust Update for Linux Kernel
Linux Foundation via YouTube Where Are Your Images Running? Stop Worrying and Start Encrypting!
CNCF [Cloud Native Computing Foundation] via YouTube Securing Firmware - Secure and Trusted Boot in OpenBMC
linux.conf.au via YouTube Extending Non-Repudiable Logs with eBPF
Linux Plumbers Conference via YouTube