Learn more about LinuxCon + ContainerCon + CloudOpen China, happening June 19-20. 

Customize your schedule by experience level and/or presentation language: Refer to the “Filter by Type” list on the right to find a session based on topic and/or experience level. Presentation Language - Sessions are categorized as [C] Chinese, [C,E] Chinese with English Slides or [E] English at the end of each talk title.
Back To Schedule
Monday, June 19 • 14:15 - 14:45
Beginning to Harden Linux by Secure Boot + Measured Boot [E] - Seehwan Yoo, Dankook University

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Grub is a decent bootloader for many Linux distros that supports rich functionalities. Recent TrustedGRUB2 supports measured boot with TPM. It measures the integrity of booting process, generating a hash value that could be used for root-of-trust. On the other hand, UEFI defines secure boot, which checks the validity of the bootloader and kernel. Unfortunately, both have some limitations: measured boot lacks in enforcement mechanism, and secure boot doesn't give any provenance of integrity to use as root-of-trust. Secure boot+measured boot makes Linux booting harden. Secure boot will check the integrity of binary, with proper enforcement mechanism; measured boot will provide root-of-trust that measures the system integrity information to the post-boot software. This talk will review why and how the two booting processes (secure boot and measured boot) can be integrated with TrustedGRUB.

avatar for Seehwan Yoo

Seehwan Yoo

Professor, Dankook University
Dr. Seehwan Yoo is an assistant professor in Dankook University. Dr. Seehwan Yoo has received Ph.D. from Korea University in 2013. He conducted some virtualization project on mobile devices, running multiple OSs over smartphones. He worked for LG electronics in 2014, and currently... Read More →

Monday June 19, 2017 14:15 - 14:45 HKT
Room 307B
  LinuxCon, Developer