ipe.rst - OpenGrok cross reference for /linux/Documentation/security/ipe.rst

Lines Matching refs:integrity
17 strong integrity guarantees over both the executable code, and specific
19 specific data files would not be readable unless they passed integrity
22 of what would provide the integrity claims. At the time, there were two
23 main mechanisms considered that could guarantee integrity for the system
30 over IMA+EVM as the *integrity mechanism* in the original use case of IPE
39       files), cannot be enforced to be globally integrity verified. This means
41       enforce the integrity policy, or it should not.
44       policy would indicate what labels required integrity verification, which
48       file should be subject to integrity policy.
57       initially, passing the required integrity check. Then, on the page fault
64     * dm-verity provides integrity verification on demand as blocks are
75 The next step was to choose a *policy* to enforce the integrity mechanism.
78   1. The policy itself must be integrity verified (preventing trivial
89 IMA, as the only integrity policy mechanism at the time, was
100      separation of measurement policy from local integrity policy
104 whose responsibility would be only the local integrity policy enforcement.
109 IPE, as its name implies, is fundamentally an integrity policy enforcement
110 solution; IPE does not mandate how integrity is provided, but instead
113 There are several different integrity solutions that provide a different
117 IPE does not have an inherent mechanism to ensure integrity on its own.
119 can guarantee integrity. It's important to note that the mechanism for proving
120 integrity is independent of the policy for enforcing that integrity claim.
124   1. Easy integrations with integrity providers.
130 IPE was designed after evaluating existing integrity policy solutions
150 other LSMs, but solves two major problems that occurs with some integrity policy
182 high security bar, as anything signed can be used to attack integrity
286 For example, consider a system that has strong integrity guarantees
303 executables should have integrity guarantees, without exception. The
348 investigation to the exact line that resulted in the action. Some integrity