> Of course, if an attacker can gain control of the kernel at boot time, before the IMA module has been initialized, the entire battle has been lost.
Don't forget that the TPM-signed aggregate is considered unforgeable, so attetstation will still fail.
Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds