1# SPDX-License-Identifier: GPL-2.0-only 2# 3# Integrity Policy Enforcement (IPE) configuration 4# 5 6menuconfig SECURITY_IPE 7 bool "Integrity Policy Enforcement (IPE)" 8 depends on SECURITY && SECURITYFS && AUDIT && AUDITSYSCALL 9 select PKCS7_MESSAGE_PARSER 10 select SYSTEM_DATA_VERIFICATION 11 help 12 This option enables the Integrity Policy Enforcement LSM 13 allowing users to define a policy to enforce a trust-based access 14 control. A key feature of IPE is a customizable policy to allow 15 admins to reconfigure trust requirements on the fly. 16 17 If unsure, answer N. 18