Menu
▾
▴
Re: [Linux-ima-user] ima-ng template
|
From: Micka <mic...@gm...> - 2017-03-15 14:02:20
|
Do you know where I can find documentation about others PCRs ? which project/binary use those PCRs ? Also why I can't edit this file : "/sys/kernel/security/ima/policy" ? I'm using the root user, but I can't access it. How can I change the policy of the ima ? Micka, Le ven. 10 mars 2017 à 16:31, Ken Goldman <kg...@li...> a écrit : > > On Mon, 2017-03-06 at 11:43 +0000, Micka wrote: > >> > >> Why I have only PCR-10 working in my TPM ? How can I have other PCRs ? > > If your question is "Why does IMA use one PCR? Why not multiple PCRS?" > > PCRs are a scarce resource on the TPM. There are only 24, and most are > already assigned. Generally, one would use multiple PCRs when you want > to seal/unseal to a subset of the measurements. > > Since it's unlikely that one could seal to the IMA measurements (because > multi-threading changes the order each time), I don't see a rationale > for using more than one PCR. > > > > ------------------------------------------------------------------------------ > Announcing the Oxford Dictionaries API! The API offers world-renowned > dictionary content that is easy and intuitive to access. Sign up for an > account today to start using our lexical data to power your apps and > projects. Get started today and enter our developer competition. > http://sdm.link/oxford > _______________________________________________ > Linux-ima-user mailing list > Lin...@li... > https://lists.sourceforge.net/lists/listinfo/linux-ima-user > |
