Technology Today

Microsoft reveals new code stability feature for Linux

   Download Android App    Share in      FullScreen   CheckVideos

Microsoft has published details about a new project called Integrity Policy Enforcement (IPE) that it has been working on for the Linux kernel.IPE is a Linux Security Module (LSM) which are optional add-ons for the Linux kernel designed to enable additional security features.

In its documentation page, Microsoft explained how IPE attempts to solve the issue of code integrity, saying:“IPE is a Linux Security Module, which allows for a configurable policy to enforce integrity requirements on the whole system.

It attempts to solve the issue of code integrity: that any code being executed (or files being read), are identical to the version that was built by a trusted source.

Simply stated, IPE helps the owner of a system ensure that only code they have authorized is allowed to execute.On Linux systems with IPE enabled, system administrators can create a list of binaries that are allowed to execute and add verification attributes which the kernel needs to check for each binary before allowing it to run.

If a binary has been altered by an attacker, IPE has the ability to block the execution of the malicious code.According to Microsoft, IPE is not intended for general-purpose computing as it was designed for very specific use cases when security is of the utmost importance and administrators need to be in full control of what code runs on their systems.Some examples of systems that could benefit from using the software giant's new LSM include embedded systems such as network firewall devices running in a data center and Linux servers that are running strict and immutable configurations and applications.Microsoft has published the specifications for the new IPE module but it is currently in a RFC or request for comments state.

It will likely be some time before IPE ships with the actual Linux kernel.The Linux kernel already includes a LSM for code integrity called Integrity Measurement Architecture (IMA).

However, Microsoft says that IPE differs from IMA because “it has no dependency on the filesystem metadata” and because IPE attributes “are deterministic properties that exist solely in the kernel”.Via ZDNet




Unlimited Portal Access + Monthly Magazine - 12 issues-Publication from Jan 2021

Buy Our Merchandise (Peace Series)

 

Contribute US to Start Broadcasting


It's Voluntary! Take care of your Family, Friends and People around You First and later think about us. Its Fine if you dont wish to contribute and if you wish to contribute then think about the Homeless first and Feed them. We can survive with your wishes too :-). You can Buy our Merchandise too which are of the finest quality.

STRIPE

Forget Samsung's Galaxy S24 - the top-rated Galaxy S23 is now at an unmissable price

Leading Tech: My Alexa-compatible voice-activated smart kettle is the best gizmo I own

Rare £& pound; 1.99 Fire TV Stick upgrades will not be around for long, do not miss out

Surprising Sky update uses smash hit television increase to millions of UK homes

Xbox shoppers can get Series S console totally free after PS5 Pro launch

'I've utilized these Sony Wireless Bluetooth Headphones every day considering that I purchased them'

Hacker confirms worst UK passwords - if yours is on this list, change it now

Switch how you watch TV and get Sky plus Netflix for a surprisingly low price

Amazon's Fire TVs are now so inexpensive you'll be blocked from buying more than one

Apple issues 'important' update to millions - you must check your iPhone now

Leading Tech: Best Amazon gizmos on sale in early Prime Day offers

Google prohibits popular Android app - now you should delete it from your phone today

We tried Ring's new doorbell with 'HD views' and it's been cut to cheapest price

Amazon offers surprise reason to ditch your Fire TV Stick, Echo and Kindle this week

Google says 'big changes' are coming to your Gmail account as free upgrade confirmed

Rare Nintendo 64 game could be worth over ?200 but only if it has specific mark

Samsung issues 24-hour countdown to claim a free Galaxy laptop - don't miss out

Sky rivals BT and Virgin Media with 'lowest ever' high speed broadband price which's not all

WhatsApp validates dramatic modification to your chats and it's pertaining to all phones soon

Hidden Sky TV setting will conserve you cash - inspect your set-top box right away

PlayStation Network is down - players fume as essential PSN services go offline for hours

Details
Category: Technology Today


54