DSI / DigSig: linux kernel security++ / News: Recent posts

Digsig 1.5 -rev available now !

In Linux Kernel 2.6.19, major changes have taken place in the security hashing infrastructure. Hence, a patch is required to upgrade the older digsig module to current kernel interfaces. digsig-1.5 supported only kernels till 2.6.16. The digsig-1.5-rev has all the required changes for switching between crypto_digest to crypto_hash infrastructure. And it gets compiled and works fine with the 2.6.19 and above kernels.

Posted by Kaustubh Atrawalkar 2008-01-30

LSM 2005 Slides are available

You'll find them on our home page, disec.sourceforge.net

Posted by Axelle Apvrille 2005-07-07

Crtitical bug fixed, switch to 1.4.1

It turned out that we had a bug in signature verification. We fixed that bug. If you're running 1.4.0 please consider switching t0 1.4.1.

Posted by makan pourzandi 2005-02-12

DigSig 1.3.1 is out

You probably already know the news ;-)
In addition, the home page has been updated.

Posted by Axelle Apvrille 2004-09-07

Disec web site updated

Two new papers added + information concerning DigSig major milestones.

Posted by Axelle Apvrille 2004-07-07

DigSig 1.2 doc released

You can read details at http://disec.sourceforge.net/docs/digsig.pdf .
This is a working document (~draft).

Posted by Axelle Apvrille 2004-03-29

DigSig 1.2 is out!

Hi all,

Thanks to Serge Hallyn who did all the coding for this new release, we have a new DigSig release with caching now supported at kernel level.

Added to README:

From release 1.2, the caching of signatures at kernel level is supported.
Once the signature of a binary is verified, its signature is cached in the
kernel memory. Therefore, there is no need for signature verification in
subsequent calls to this binary.
When a binary file is modified, the corresponding cache entry in the memory
is invalidated.
Best Regards,
Makan

Posted by makan pourzandi 2004-02-23

DigSig 1.1 is out!

Vincent did a little bug fix, which eliminates one extra useless signature verification for shared libraries. As the changes were small but the improvement is important: the signature verification time is divided by two, I did a new release DigSig 1.1.

Posted by makan pourzandi 2003-12-19