24-28 August 2020
US/Pacific timezone

Advanced Applications of DRTM with TrenchBoot SecureLaunch for Linux

27 Aug 2020, 10:00
20m
Microconference2/Virtual-Room (LPC 2020)

Microconference2/Virtual-Room

LPC 2020

150
System Boot and Security MC System Boot and Security MC

Speaker

Daniel Smith (Apertus Solutions, LLC)

Description

The TrenchBoot Project has put forth an RFC for adding direct support to Linux for x86 DRTM. Many people are familiar with the early launch capability implemented by Intel's tboot, but there has also been academic work on live relaunch, e.g. Jon McCune's Flicker. SecureLaunch was designed to support a range of launch integrity capabilities. This discussion will review a subset of solutions that can be implemented using DRTM, along with roadmap candidates for SecureLaunch feature development.

I agree to abide by the anti-harassment policy I agree

Primary author

Daniel Smith (Apertus Solutions, LLC)

Presentation Materials