Remote Attestation with Keylime
- Track: Security devroom
- Room: UA2.118 (Henriot)
- Day: Saturday
- Start: 13:30
- End: 13:55
- Video only: ua2118_henriot
- Chat: Join the conversation!
In various scenarios, it is necessary to attest the integrity of a remote machine, making sure that the system was booted securely, essential files were not modified and that only allowed software is executed. For this purpose, we present Keylime as a remote attestation solution. It leverages the trust from the Trusted Platform Module (TPM) in combination with UEFI Measured Boot and the Linux Kernel Integrity Measurement Architecture (IMA) which are probably available on your system today. We will present how Keylime works and real world applications for remote attestation.
Speakers
Anderson Sasaki | |
Thore Sommer |