fs-verity - Native File-based Authenticity
Offered By: Linux Foundation via YouTube
Course Description
Overview
Explore a comprehensive conference talk on fs-verity, a native file-based authenticity mechanism for Linux file systems. Delve into the intricacies of validating individual file authenticity, its integration with the Integrity Measurement Architecture (IMA), and potential applications in container image content validation. Learn about the Android platform's use of dm-verity for system image protection and the need for incremental updates in critical components. Discover the technical aspects of file measurement, performance impacts, delayed verification, and forward error correction. Gain insights from Google engineers Michael Halcrow and Eric Biggers as they discuss hash firmware, dictionary structures, IO errors, and the concept of partial disk authentication.
Syllabus
Introduction
Background
Outline
Hash
Firmware
Dictionary structures
IO errors
Android verified boot
DM Verity
Partial disk authentication
fsverity
contents of a file
DMVerde
Data Fields
File Measurement
fsparity
Verification
File measurements
Performance impacts
Smaller files
Performance
Power consumption
Delayed verification
Forward error correction
Protecting against a man on the disc
attestation
Taught by
Linux Foundation
Tags
Related Courses
Building Geospatial Apps on Postgres, PostGIS, & Citus at Large ScaleMicrosoft via YouTube Unlocking the Power of ML for Your JavaScript Applications with TensorFlow.js
TensorFlow via YouTube Managing the Reactive World with RxJava - Jake Wharton
ChariotSolutions via YouTube What's New in Grails 2.0
ChariotSolutions via YouTube Performance Analysis of Apache Spark and Presto in Cloud Environments
Databricks via YouTube